The Office of the National Cyber Director (ONCD) is seeking public comments on current challenges with overlap and duplication in cybersecurity regulations, particularly for critical infrastructure sectors.
The request for information follows from the National Cybersecurity Strategy, which calls for mandatory cybersecurity regulations in some areas but also recognizes the need to resolve “regulatory conflicts, inconsistencies, redundancies, challenges, and priorities,” according to an Aug. 16 notice by the ONCD in the Federal Register.
“ONCD is particularly interested in regulatory harmonization as it may apply to critical infrastructure sectors and sub-sectors identified in Presidential Policy Directive 21 and the National Infrastructure Protection Plan, and providers of communications, IT, and cybersecurity services to owners and operators of critical infrastructure,” the notice says.
Presidential Policy Directive 21 was issued by then President Obama in February 2013 to strengthen, and make more resilient, the nation’s critical infrastructure.
ONCD, in cooperation with the Office of Management and Budget, is leading federal cybersecurity regulatory harmonization. Responses are due by Oct. 31.