FCC Circulating Policy Statement Adopting CSRIC Cybersecurity Recommendations
The FCC said Friday that it’s circulating a policy statement that an agency official and industry lobbyist separately said would adopt the Communications Security, Reliability and Interoperability Council’s (CSRIC) 2015 report on recommendations for communications sector cybersecurity risk management. The…
Sign up for a free preview to unlock the rest of this article
Export Compliance Daily combines U.S. export control news, foreign border import regulation and policy developments into a single daily information service that reliably informs its trade professional readers about important current issues affecting their operations.
CSRIC report, which was meant to adapt the National Institute of Standards and Technology-facilitated Cybersecurity Framework for communications sector use, included nine recommendations to the FCC on how the agency can encourage industry use of the NIST framework and other cybersecurity best practices. The private sector also voluntarily committed via the CSRIC report to promoting the use of FCC-initiated confidential meetings with individual companies to discuss their cyber risks and their use of cybersecurity best practices (see 1503180056). The policy statement would in part set up a process for conducting the confidential FCC-private sector meetings, an industry lobbyist told us.