About this episode
CISA’s CIRCIA rulemaking could reshape how serious cyber incidents get reported across critical infrastructure—and MSPs are right in the middle of it. In this episode, Uncle Marv breaks down what’s in play, what’s unclear, and what you should be building now so you’re not scrambling when clients (or regulators) start asking questions.
Understand the 72-hour incident reporting expectation and the 24-hour ransom payment reporting requirement.?
Learn why MSPs may be treated like critical infrastructure, not “just vendors.”?
Get a practical view of what CISA expects inside an incident report (timelines, IOCs, TTPs, impact, mitigation).?
Hear where CISA is questioning scope: sector-based vs. size-based thresholds, and what that could mean for you.?
Find the operational gaps you need to close (logging, evidence aggregation, documentation speed).
Links from the Show:
Cybersecurity and Infrastructure Security Agency (CISA): https://www.cisa.gov/?
Cyber Incident Reporting for Critical Infrastructure Act (CIRCIA): https://www.cisa.gov/circia?
Small Business Administration (SBA): https://www.sba.gov/?
Environmental Protection Agency (EPA): https://www.epa.gov/?
EPA Risk Management Program (RMP): https://www.epa.gov/rmp?
Department of Justice (DOJ): https://www.justice.gov/
=== SPONSORS:
Livestream Partner, ThreatLocker: https://www.itbusinesspodcast.com/threatlocker
Technology Partner, NetAlly: https://www.itbusinesspodcast.com/netally/
Technology Partner: Bvoip: https://www.itbusinesspodcast.com/bvoip
Technology Partner, Liongard: https://www.itbusinesspodcast.com/liongard
Travel Partner: TruGrid: https://www.itbusinesspodcast.com/trugrid
Digital Partner, Designer Ready: http://itbusinesspodcast.com/designerready
=== SHOW MUSIC:
