Skip to content

Cyber Insurance News

The Leading Source for Cybersecurity Insurance News, Insights and Data

CISA Releases Draft Update to Cyber Incident Response Plan for Public Review

Posted on December 16, 2024December 16, 2024 By Martin Hinton

The Cybersecurity and Infrastructure Security Agency (CISA) published a draft update to the National Cyber Incident Response Plan (NCIRP) and is seeking public input. This update, the first since the plan’s original release in 2016, reflects changes in federal policies and cyber operations.

The NCIRP provides a framework for coordinating responses to significant cyber incidents across federal, state, local, tribal, and territorial (SLTT) governments, private sector entities, and international partners. It focuses on four areas of effort: Asset Response, Threat Response, Intelligence Support, and Affected Entity Response.

The draft update is now available for public review and comment through the Federal Register (CISA-2024-0037).

Image of the Cybersecurity and Infrastructure Security Agency (CISA) seal.
Key Changes in the Draft Update

CISA, working with the Joint Cyber Defense Collaborative (JCDC) and the Office of the National Cyber Director (ONCD), has made several adjustments to the NCIRP. These include:

  • Clearer pathways for non-federal stakeholders to participate in cyber incident coordination.
  • Streamlined content for easier usability and alignment with operational processes.
  • Updated legal and policy information to reflect changes since 2016.
  • An established schedule for periodic updates.

The NCIRP draft does not provide step-by-step instructions. Instead, it offers a flexible structure that can be adapted to the incident when it becomes known. It also emphasizes coordination between public and private sectors to respond to cyber threats effectively.

Public Input and Review Period

CISA has invited public and private sector stakeholders to provide comments on the draft of the CISA Cyber Incident Response Plan. Unsurprisingly, feedback is intended to address gaps, clarify roles, and enhance the framework’s usability.

Director Jen Easterly highlighted the importance of input from non-governmental stakeholders. She noted that broader participation is necessary to ensure effective incident responses. “This draft NCIRP Update leverages the lessons learned over the past several years to achieve a deeper unity of effort between the government and the private sector. We encourage public comment and feedback to help us ensure its maximum effectiveness,” said Easterly.  

National Coordination Structures

The NCIRP outlines how federal agencies will coordinate with each other and with SLTT governments, private entities, and other stakeholders. Key federal roles include:

  • CISA: Leads efforts to assist affected organizations in protecting their assets and reducing incident impacts.
  • Department of Justice and FBI: Conduct law enforcement investigations, attribute attacks, and work to disrupt threat actors.
  • Office of the Director of National Intelligence: Provides intelligence assessments and integrates findings into incident response efforts.
Future Revisions and Incident Management

The draft emphasizes a need for ongoing revisions given the evolving threat landscape. On this there should be no debate. Secuirty is a perishable state, this is absoultly the case with regaerd to cybersecurity. CISA has committed to a regular update cycle and intends to incorporate lessons from recent cyber incidents. Additionally, the NCIRP integrates broader federal response frameworks, including those managed by the Federal Emergency Management Agency (FEMA), to address consequences beyond the cyber domain.

Stakeholders are encouraged to align their internal response processes with the NCIRP to streamline coordination during incidents. The draft also identifies key decision points and activities that agencies and partners should consider throughout the lifecycle of a cyber incident, from detection and containment to post-incident review.

Other News: SecurityScorecard Signs CISA’s Secure by Design Pledge(Opens in a new browser tab)

Martin Hinton

Martin Hinton is the Executive Editor and Publisher of Cyber Insurance News and Information. With over three decades of journalism experience across six continents, his work encompasses investigative reporting, documentaries, and coverage of cultural, political, and business news. To learn more about his career, click on his name to visit his LinkedIn page.

Cybersecurity, Department of Homeland Security Tags:CISA, cyber attack, cyber incident response, cyber insurance, Cyber Resilience, Cybersecurity, Cybersecurity and Infrastructure Security Agency, National Cyber Incident Response Plan, NCIRP, Ransomware

Post navigation

Previous Post: CyberCube Partners with Mathison Insurance Partners to Enhance Cyber Risk
Next Post: Ezechiel Symenouh Moves to Arch Insurance As Senior Cyber Underwriter

Related Posts

  • Beware of Cyber Scrooges: Festive Fortifications Against Holiday Cybersecurity Scams and Theft Cybersecurity
  • Cyber Incidents Top 2025 Risk: AI Amplifies Threats, Says Allianz Risk Barometer Cybersecurity
  • SecurityScorecard Achieves StateRAMP Ready Status and Reaffirms FedRAMP Compliance Cybersecurity
  • C-Suite Cybersecurity Disconnect, Impacting Company Value – EY Study Cybersecurity
  • Global Cybersecurity Outlook 2025: Addressing Complexity, Inequity, and AI Risks Cybersecurity
  • Cybersecurity Readiness: Why Most Enterprises Overestimate Their Resilience Cyber Insurance

Get the Cyber Insurance Newsletter

Receive weekly updates on the top news on cyber insurance.

Cyber Insurance News

Cyber Insurance News
In the wake of the Harrods hack and cyberattacks impacting other retailers, the alarming state of UK cybersecurity will be revealed in 2024. From cyberattacks hitting major UK retailers like Co-op and Harrods to small businesses struggling without protection, the message is clear—cybercrime is a national threat.

New research by Pen Underwriting reveals that while 90% of UK and Irish businesses feel secure, only 47% have dedicated cyber insurance. Even more shocking—only 18% of businesses earning under £1 million are covered. The cost isn’t just financial—real people suffer, like the couple who lost their wedding cake due to a ransomware attack.

Watch now to understand:

Why UK businesses are dangerously unprepared

How cyberattacks are more common than fires or theft

The key role of employee training, data backups, and multi-factor authentication (MFA)

Why cyber insurance is no longer optional

Visit www.cyberinsurancenews.org for the latest cyber insurance and cybersecurity updates.

#UKCybersecurity #CyberInsurance #SmallBusinessSecurity #CyberCrime
Harrods hack UK Cybersecurity Crisis: Shocking Stats, Real Victims & Business Risks. #cybersecurity
Cyber Insurance Compliance Is Reshaping Security in 2025!

Cyber insurance compliance is no longer optional—it's a driving force behind how companies build and execute cybersecurity strategies. In this video, we break down the latest insights from the 2025 State of Pentesting report:

✅ 59% of U.S. businesses now implement new security tools based on insurer recommendations
✅ 93% of CISOs are guided by mandates from insurance providers
✅ Pentesting isn't just for compliance—it's about proving you're covered and protected
✅ The average enterprise is spending $187,000+ annually on penetration testing

As premiums stabilize, cyber insurance compliance is pushing companies toward proactive, automated, and continuous risk assessment. Learn how to stay ahead, reduce exposure, and align with both regulators and insurers.

💡 Don’t forget to like, subscribe, and hit the bell to stay updated on the latest in cybersecurity and insurance trends!

#CyberInsuranceCompliance #CyberSecurity #PenetrationTesting #CISO #InfoSec #CyberInsurance #RiskManagement #Compliance2025 #EnterpriseSecurity #CyberDefense #TechTrends #InsuranceTech
Cyber Insurance Compliance Is Reshaping Security in 2025 #cyberinsurance
In this video, we break down the massive cyber insurance settlements following the CDK Global ransomware attack that rocked the automotive industry. 🚗💻

Auto giants like Asbury Automotive Group reported up to $10 million in cyber insurance recovery, while AutoNation only recently filed their claim — months after the breach! We explore the financial disclosures, the delayed responses, and what this means for car dealerships, investors, and cybersecurity preparedness.

Learn:
✔️ How cyber insurance is shaping post-breach recovery
✔️ Why SEC filings like 10-Q and 8-K matter
✔️ What lessons other businesses can learn from this
✔️ The real cost of a ransomware attack in automotive retail

🔔 Subscribe for more deep dives into cybersecurity, tech, and industry trends!
#cyberinsurance #CDKGlobal #RansomwareAttack #AutoIndustry #CyberSecurityNews
$10M Cyber Insurance Payout: CDK Ransomware Fallout Hits Auto Giants | #cyberinsurance
Load More... Subscribe

Categories

  • AI & Cyber Insurance
  • AI & Cybersecurity
  • Critical Infrastructure cyber insurance and security
  • Cyber Cat Bonds/Cyber Catastrophe Bonds
  • Cyber Insurance
  • Cyber Insurance APAC
  • Cyber Insurance Best Practices
  • Cyber Insurance Captive
  • Cyber Insurance Carriers & Brokers
  • Cyber Insurance Claims
  • Cyber Insurance EU
  • Cyber Insurance Financial Institutions
  • Cyber Insurance for Government
  • Cyber Insurance for Healthcare
  • Cyber Insurance for Schools
  • Cyber Insurance for SMEs/SMBs
  • Cyber Insurance For Startups
  • Cyber Insurance for Utilities
  • Cyber Insurance Geographic Markets
  • Cyber Insurance Industry Groups
  • Cyber Insurance Investments and M&A
  • Cyber Insurance Jobs
  • Cyber Insurance Laws & Regulations
  • Cyber Insurance Litigation
  • Cyber Insurance Market Size
  • Cyber Insurance MENA
  • Cyber Insurance News & Information Podcst
  • Cyber Insurance People
  • Cyber Insurance Policies & Strategies
  • Cyber Insurance Premiums
  • Cyber Insurance Reports
  • Cyber Insurance Settlements
  • Cyber Insurance Sunday – Upload
  • Cyber Insurance Systemic Risks
  • Cyber Insurance Tech
  • Cyber Insurance Threats
  • Cyber Insurance UK
  • Cyber Insurance Underwriting
  • Cyber Insurance Wholesaler
  • Cyber Regulations
  • Cyber War Exclusions
  • Cybersecurity
  • Cybersecurity and Credit Ratings
  • Cybersecurity for SMBs
  • Cybersecurity in Education
  • Cybersecurity Investment
  • cybersecurity jobs
  • cybersecurity M&A
  • Cybersecurity people
  • Cybersecurity Report
  • Cybersecurity Training
  • Department of Homeland Security
  • EU Cybersecurity
  • Insurance Linked Securities/ILS
  • Insurance Loss Warranty contract/ILW
  • Managed Service Providers
  • National Association of Insurance Commissioners' (NAIC) model cybersecurity law
  • Non-criminal Claims/Non-Malicious Claims
  • Opinion/Commentary
  • Personal Cyber Insurance
  • Personal CyberSecurity
  • Ransomware Insurance
  • Reinsurance
  • Risk Modeling
  • SEC Cyber Disclosure Rule
  • Small Business
  • Supply Chain Cybersecurity And Insurance

Send Ideas, Requests & Comments




    Tags

    AI Artificial Intelligence At-Bay Beazley CFC Chubb Cloud Security Coalition Corvus Cowbell Cowbell Cyber crowdstrike cyber attack Cybercrime cyber crime CyberCube cyber insurace cyberinsurance cyber insurance cyber insurance for small businesses Cyber Insurance Market Cyber liability Insruance cyber liability insurance cyberliabilityinsurance Cyber Resilience Cyber Risk Cyber Risk Management cyber security Cybersecurity cybersecurity insurance Cyber threats Data Breach Howden Lloyds Marsh Microsoft personal cyber insurance phishing Ransomware Ransomware Insurance reinsurance Resilience Risk Management SecurityScorecard small business
    • Cyber Insurance Books
    • Cyber Insurance Reports & Documents
    • Cyber Insurance Acronyms/Terms
    • Cyber Insurance Companies: Carriers, Brokers & Vendors
    • Industry Response: Potential Federal Insurance Response to Catastrophic Cyber Incidents
    • Ransomware Insurance
    • How Much Is Cyber Insurance?
    • Considerations for Buying Cyber Insurance
    • Cyber Liability Insurance Near Me
    • Cyber Insurance Quote
    • Newsletter
    • Legal Analysis & Full Text of 2023 SEC Rule: Cybersecurity Risk Management, Strategy, Governance, and Incident Disclosure
    • Glossary
    • About Cyber Insurance News
    • Privacy Policy

    • Cyber Insurance in 2025: Trends to Know from RSM’s Latest Cybersecurity Report Cyber Insurance Reports
    • Moody’s and Bitsight Launch ICT For Cyber Risk Assessment Cybersecurity
    • New Quoting Platform from World’s Largest Public Insurance Company Sure to Accelerate Growth of Stand-alone Cyber Policies  Cyber Insurance Best Practices
    • Cyber Insurance Adoption: The IT Challenge Cyber Insurance Reports
    • University of California System Sues Lloyd’s Over 2014 Hack  Cyber Insurance for Government
    • Tips for Today’s Cyber Insurance Market: Practical Report for CISO’s/Execs from Microsoft Cyber Insurance Best Practices
    • Cyber Insurance Market Penetration for Several Sectors: Moody’s Report Cyber Insurance
    • Supporting the Need for More Cyber Legislation? Congressional Reps and Staffers Hit by Health Data Breach  Cyber Insurance Best Practices

    Related Cybersecurity Sites

    http://www.whatiscyberliability.com

    https://www.whatiscyberinsurance.com

    http://www.ddosattacktutorial.com

    http://www.ransomwareremovaltool.com

    Our Privacy Policy: https://cyberinsurancenews.org/privacy-policy/

    Copyright © 2024 Cyber Insurance News.

    Powered by PressBook Premium theme