With the extension, the ONCD “seeks input from stakeholders to understand existing challenges with regulatory overlap, and explore a framework for reciprocity in regulator acceptance of other regulators’ recognition of compliance with baseline requirements,” said the agency in an updated note in the Federal Register.
Such harmonization of baseline cybersecurity requirements across different industries comes after the Biden administration unveiled its national cybersecurity strategy which sought more cyber regulation through minimum critical infrastructure security standards and the transfer of computer system security burdens from customers to software vendors, representing a change of pace from the White House’s prior emphasis on information sharing efforts.