Zero trust leader Sean Connelly urges CISA to continue providing guidance for agencies amid ongoing transition efforts via Jaden Beard insidecybersecurity.com/daily-news/zer…

Big news for SBOM stakeholders: CISA seeks feedback on draft update to SBOM minimum elements report, first released under Biden cyber executive order insidecybersecurity.com/daily-news/cis… CISA Cyber

My rundown of what's in the House CISA 2015 reauthorization bill from Homeland Security Chairman Garbarino. The committee markup starts at 10 am.

The second rulemaking to implement CMMC is coming soon following the completion of the interagency review process at OIRA. Meanwhile, DOD is clarifying implementation in a new memo:

First in Inside Cybersecurity: CISA moves deadline to May 2026 for issuing final rule implementing mandatory incident reporting regime insidecybersecurity.com/daily-news/cis… CISA Cyber

ICYMI: CISA moves deadline to May 2026 for issuing final rule implementing mandatory incident reporting regime insidecybersecurity.com/daily-news/cis…

IST’s Klein sees Texas cyber lawsuit against PowerSchool as opportunity to encourage investments in supporting K-12 schools insidecybersecurity.com/daily-news/ist… Institute for Security and Technology

I spoke with CISA's Jay Gazlay about the updated SBOM minimum elements guide and what's next for SBOM at CISA: insidecybersecurity.com/daily-news/cis… CISA Cyber

Big news: Defense Dept. finalizes second rulemaking to implement CMMC program, setting up timeline with November kickoff insidecybersecurity.com/daily-news/def… @DoW_CIO

Sen. Peters weighs in on Paul draft bill making changes to CISA 2015 ahead of markup ow.ly/bkzS106lw3j

Stakeholders expect short-term lapse of CISA 2015 protections, as federal shutdown looms ow.ly/OvHI106n2u7

My breakdown on agency plans to operate in the government shutdown:

McCrary task force calls for proactive efforts in response to China-backed ‘typhoon’ campaigns targeting critical infrastructure insidecybersecurity.com/daily-news/mcc… McCrary Institute

ICYMI: NCD Cairncross highlights reauthorization of CISA 2015 as top priority, previews upcoming national cyber strategy insidecybersecurity.com/daily-news/ncd… White House Office of the National Cyber Director

Security leader Clinton highlights benefits of virtual cyber academy under new ONCD leadership via Jaden Beard insidecybersecurity.com/daily-news/sec… Internet Security Alliance

ICYMI: White House plans Jan. 1 launch for new Trump cyber strategy, with accompanying executive order on implementation insidecybersecurity.com/daily-news/whi… White House Office of the National Cyber Director

Senate rejects Plankey nomination for CISA director, sets up potential decision on next steps ow.ly/T9Zm106sKT7

My annual regulatory outlook story provides details on CISA's incident reporting rule, NIST publications and the cyber landscape at regulatory agencies:

New on the Cyber Focus podcast: Inside Cybersecurity's Sara Friedman on the Trump administration’s push to prioritize AI innovation—and why NIST’s effort to develop standards for “AI agents” is becoming a fast-moving cybersecurity issue. Sara explains how AI is reshaping both cyber

My initial take on the Trump national cyber strategy. Lots more to come next week! White House Office of the National Cyber Director