Agency Information Collection Activities: ReadySetCyber Initiative Questionnaire, 86142-86143 [2023-27216]
Download as PDF
86142
Federal Register / Vol. 88, No. 237 / Tuesday, December 12, 2023 / Notices
Comments
Comments may be submitted as
indicated in the ADDRESSES caption
above. Comments are solicited to (a)
evaluate whether the proposed data
collection is necessary for the proper
performance of the Agency, including
whether the information shall have
practical utility; (b) evaluate the
accuracy of the Agency’s estimate of the
burden of the proposed collection of
information, including the validity of
the methodology and assumptions used;
(c) enhance the quality, utility, and
clarity of the information to be
collected; and (d) minimize the burden
of the collection of information on those
who are to respond, including through
the use of appropriate automated,
electronic, mechanical, or other
technological collection techniques or
other forms of information technology,
e.g., permitting electronic submission of
responses.
Millicent Brown Wilson,
Records Management Branch Chief, Office
of the Chief Administrative Officer, Mission
Support, Federal Emergency Management
Agency, Department of Homeland Security.
[FR Doc. 2023–27196 Filed 12–11–23; 8:45 am]
BILLING CODE 9111–23–P
DEPARTMENT OF HOMELAND
SECURITY
Agency Information Collection
Activities: ReadySetCyber Initiative
Questionnaire
Cybersecurity and
Infrastructure Security Agency (CISA),
Department of Homeland Security
(DHS).
ACTION: 30-Day notice and request for
comments; request for a new OMB
control number, 1670–NEW.
AGENCY:
The Cyber Security Division’s
Vulnerability Management Sub-Division
within Cybersecurity and Infrastructure
Security Agency (CISA) will submit the
following information collection request
(ICR) to the Office of Management and
Budget (OMB) for review and clearance.
CISA previously published this
information collection request in the
Federal Register on August 10, 2023 for
a 60-day public comment period. 0
comments were received by CISA. The
purpose of this notice is to allow
additional 30 days for public comments.
DATES: Comments are encouraged and
will be accepted until January 11, 2024.
ADDRESSES: Written comments and
recommendations for the proposed
information collection should be sent
within 30 days of publication of this
ddrumheller on DSK120RN23PROD with NOTICES1
SUMMARY:
VerDate Sep<11>2014
18:03 Dec 11, 2023
Jkt 262001
notice to www.reginfo.gov/public/do/
PRAMain. Find this particular
information collection by selecting
‘‘Currently under 30-day Review—Open
for Public Comments’’ or by using the
search function.
The Office of Management and Budget
is particularly interested in comments
which:
1. Evaluate whether the proposed
collection of information is necessary
for the proper performance of the
functions of the agency, including
whether the information will have
practical utility;
2. Evaluate the accuracy of the
agency’s estimate of the burden of the
proposed collection of information,
including the validity of the
methodology and assumptions used;
3. Enhance the quality, utility, and
clarity of the information to be
collected; and
4. Minimize the burden of the
collection of information on those who
are to respond, including through the
use of appropriate automated,
electronic, mechanical, or other
technological collection techniques or
other forms of information technology,
e.g., permitting electronic submissions
of responses.
FOR FURTHER INFORMATION CONTACT:
Mark Robinson, 202–740–6114,
mark.robinson@hq.dhs.gov.
SUPPLEMENTARY INFORMATION: Consistent
with CISA’s authorities to ‘‘carry out
comprehensive assessments of the
vulnerabilities of the key resources and
critical infrastructure of the United
States’’ at 6 U.S.C. 652(e)(1)(B) and
provide Federal and non-Federal
entities with ‘‘operational and timely
technical assistance’’ at 6 U.S.C.
659(c)(6) and ‘‘recommendation on
security and resilience measures’’ at 6
U.S.C. 659(c)(7), CSD VM’s
ReadySetCyber initiative will collect
information in order to provide tailored
technical assistance, services and
resources to critical infrastructure
organizations from all 16 critical
infrastructure sectors based on the
maturity of their respective
cybersecurity programs.
CISA seeks to collect this information
from US critical infrastructure
organizations on a strictly voluntary and
fully electronic basis so that each
organization can be best supported in
meeting the CISA Cybersecurity
Performance Goals. The CISA
Cybersecurity Performance Goals are a
set of 38 voluntary controls which aim
to reduce the risk of cybersecurity
threats to critical infrastructure.
CISA offers a number of services and
resources to aid critical infrastructure
PO 00000
Frm 00039
Fmt 4703
Sfmt 4703
organizations in adopting the
Cybersecurity Performance Goals and
seeks to make discovery of the
appropriate services and resources as
easy as possible, especially for
organizations that many have
cybersecurity programs at low levels of
capability. For example, an organization
that is unsure of its ability to enumerate
all its assets with Internet Protocol
addresses can leverage CISA’s highly
scalable vulnerability scanning service
to discover additional assets within its
network range that may have been
previously unknown. Organizations
with more mature cybersecurity
programs who wish to evaluate their
network segmentation controls will be
better positioned to take advantage of
CISA’s more resource-intensive
architecture assessments.
To measure adoption of the
Cybersecurity Performance Goals and
assist organizations in finding the best
possible services and resources for their
cybersecurity programs, CISA is seeking
to establish a voluntary information
collection that uses respondents’
answers to tailor a package of services
and resources most applicable for their
level of program maturity.
Without collecting this information,
CSD VM will be unable to tailor an
appropriate suite of services,
recommendations, and resources to
assist that organization in protecting
itself against cybersecurity threats,
thereby creating burdens of inefficiency
for service requesters and CSD VM
alike. In addition, this information is
critical to CSD VM’s ability to measure
the adoption of CISA’s Cybersecurity
Performance Goals by critical
infrastructure organizations and assess
the maturity of critical infrastructure
organizations’ cybersecurity programs.
The information to be collected
includes: Identity and access
management, device configuration and
security, date security, governance and
training, vulnerability management,
supply chain risk management, and
incident response.
The Office of Management and Budget
is particularly interested in comments
which:
1. Evaluate whether the proposed
collection of information is necessary
for the proper performance of the
functions of the agency, including
whether the information will have
practical utility;
2. Evaluate the accuracy of the
agency’s estimate of the burden of the
proposed collection of information,
including the validity of the
methodology and assumptions used;
E:\FR\FM\12DEN1.SGM
12DEN1
Federal Register / Vol. 88, No. 237 / Tuesday, December 12, 2023 / Notices
3. Enhance the quality, utility, and
clarity of the information to be
collected; and
4. Minimize the burden of the
collection of information on those who
are to respond, including through the
use of appropriate automated,
electronic, mechanical, or other
technological collection techniques or
other forms of information technology,
e.g., permitting electronic submissions
of responses.
DEPARTMENT OF THE INTERIOR
Analysis
Agency: Cybersecurity and
Infrastructure Security Agency (CISA),
Department of Homeland Security
(DHS).
Title: ReadySetCyber.
OMB Number: 1670–NEW.
Frequency: Upon each voluntary
request for technical assistance, which
CISA expects to occur on an annual
basis.
Affected Public: Critical Infrastructure
Owners & Operators seeking CISA
services.
Number of Respondents:
Approximately 2,000 per year.
Estimated Time per Respondent: 20
minutes.
Total Burden Hours: 667 hours.
Annualized Respondent Cost:
$59,663.60.
Total Annualized Respondent Out-ofPocket Cost: $0.00.
Total Annualized Government Cost:
$0.
SUMMARY:
Robert J. Costello,
Chief Information Officer, Department of
Homeland Security, Cybersecurity and
Infrastructure Security Agency.
[FR Doc. 2023–27216 Filed 12–11–23; 8:45 am]
BILLING CODE 9110–9P–P
INTER-AMERICAN FOUNDATION
Sunshine Act Meetings
FEDERAL REGISTER CITATION OF PREVIOUS
ANNOUNCEMENT: 88 FR 84348 (December
5, 2023).
PREVIOUSLY ANNOUNCED TIME AND DATE OF
THE MEETING: December 11, 2023, 1:30
p.m. EST.
CHANGES IN THE MEETING:
This meeting
has been cancelled.
ddrumheller on DSK120RN23PROD with NOTICES1
CONTACT PERSON FOR MORE INFORMATION:
Nicole Stinson, Associate General
Counsel, (202) 683–7117 or nstinson@
iaf.gov.
(Authority: 5 U.S.C. 552b.)
Dated: December 8, 2023.
Natalia Mandrus,
Associate General Counsel.
[FR Doc. 2023–27359 Filed 12–8–23; 4:15 pm]
BILLING CODE 7025–01–P
VerDate Sep<11>2014
18:03 Dec 11, 2023
Jkt 262001
Bureau of Land Management
[BLM_OR_FRN_MO 4500176276]
Public Meetings for the John Day–
Snake Resource Advisory Council,
Oregon
Bureau of Land Management,
Interior.
ACTION: Notice of public meetings.
AGENCY:
In accordance with the
Federal Land Policy and Management
Act of 1976 and the Federal Advisory
Committee Act of 1972, the U.S.
Department of the Interior, Bureau of
Land Management’s (BLM’s) John Day–
Snake Resource Advisory Council (RAC)
will meet as follows.
DATES: The John Day–Snake RAC
Planning Subcommittee will meet from
6 p.m. to 8 p.m. Pacific time (PT) on
Wednesday, January 31, 2024, via the
Zoom for Government platform. The full
John Day–Snake RAC will meet
Wednesday and Thursday, February 28–
29, 2024, at the Hotel Condon in
Condon, Oregon. The February 28
meeting will be from 9 a.m. to 4:30 p.m.
PT and the February 29 meeting will be
from 9 a.m. to noon PT in person in
Condon, Oregon, with a virtual
participation option available.
Thirty-minute public comment
periods will be offered at 7:15 p.m. PT
on Wednesday, January 31; at 4 p.m. PT
on Thursday, February 28; and at 11:30
a.m. PT on Friday, February 29.
ADDRESSES: Final agendas for each
meeting and contact information
regarding Zoom participation details
will be published on the RAC’s web
page at least 10 days in advance at
https://www.blm.gov/get-involved/
resource-advisory-council/near-you/
oregon-washington/john-day-rac.
Comments to the RAC can be mailed
to: BLM Vale District; Attn. Shane
DeForest, 100 Oregon St., Vale, OR
97918 or emailed to sdefores@blm.gov.
FOR FURTHER INFORMATION CONTACT:
Larisa Bogardus, Public Affairs
Specialist, 3100 H. St., Baker City, OR
97814; telephone: 541–523–1407; email:
lbogardus@blm.gov. Individuals in the
United States who are deaf, blind, hard
of hearing, or have a speech disability
may dial 711 (TTY, TDD, or TeleBraille)
to access telecommunications relay
services. Individuals outside the United
States should use the relay services
offered within their countries to make
international calls to the point-ofcontact in the United States.
SUPPLEMENTARY INFORMATION: The 15member John Day–Snake RAC was
PO 00000
Frm 00040
Fmt 4703
Sfmt 4703
86143
chartered and appointed by the
Secretary of the Interior. Diverse
perspectives in the RAC are represented
by commodity, conservation, and local
interests. The RAC provides advice to
BLM and U.S. Forest Service resource
managers regarding management plans
and proposed resource actions on public
lands in the John Day–Snake area. All
meetings are open to the public in their
entirety. Information to be distributed to
the RAC must be provided to its
members prior to the start of each
meeting.
The January 31 Subcommittee
meeting will focus on compiling
information and drafting
recommendations for consideration and
presentation to the full RAC regarding a
proposed business plan and fee
proposal for the BLM’s Prineville
District Barr North Campground.
Agenda items for the February meeting
will include recommendations on the
Barr North Campground business plan
and related recreation fees. Standing
agenda items include management of
energy and minerals, timber, rangeland
and grazing, commercial and dispersed
recreation, wildland fire and fuels, and
wild horses and burro management by
the Vale or Prineville BLM Districts and
the Wallowa-Whitman, Umatilla,
Malheur, Ochoco, and Deschutes
National Forests; and any other business
that may reasonably come before the
RAC. The Designated Federal Officer
will attend the meeting, take minutes,
and publish the minutes on the RAC
web page at https://www.blm.gov/getinvolved/resource-advisory-council/
near-you/oregon-washington/john-dayrac.
The public may send written
comments to the subcommittee and
RAC in response to material presented
(see ADDRESSES).
Please make requests in advance for
sign language interpreter services,
assistive listening devices, or other
reasonable accommodations. We ask
that you contact the person listed in the
FOR FURTHER INFORMATION CONTACT
section of this notice at least seven (7)
business days prior to the meeting to
allow for sufficient time to process the
request. All reasonable accommodation
requests are managed on a case-by-case
basis.
Before including your address, phone
number, email address, or other
personal identifying information in your
comments, please be aware that your
entire comment—including your
personal identifying information—may
be made publicly available at any time.
While you can ask us in your comment
to withhold your personal identifying
information from public review, we
E:\FR\FM\12DEN1.SGM
12DEN1
Agencies
[Federal Register Volume 88, Number 237 (Tuesday, December 12, 2023)]
[Notices]
[Pages 86142-86143]
From the Federal Register Online via the Government Publishing Office [www.gpo.gov]
[FR Doc No: 2023-27216]
-----------------------------------------------------------------------
DEPARTMENT OF HOMELAND SECURITY
Agency Information Collection Activities: ReadySetCyber
Initiative Questionnaire
AGENCY: Cybersecurity and Infrastructure Security Agency (CISA),
Department of Homeland Security (DHS).
ACTION: 30-Day notice and request for comments; request for a new OMB
control number, 1670-NEW.
-----------------------------------------------------------------------
SUMMARY: The Cyber Security Division's Vulnerability Management Sub-
Division within Cybersecurity and Infrastructure Security Agency (CISA)
will submit the following information collection request (ICR) to the
Office of Management and Budget (OMB) for review and clearance. CISA
previously published this information collection request in the Federal
Register on August 10, 2023 for a 60-day public comment period. 0
comments were received by CISA. The purpose of this notice is to allow
additional 30 days for public comments.
DATES: Comments are encouraged and will be accepted until January 11,
2024.
ADDRESSES: Written comments and recommendations for the proposed
information collection should be sent within 30 days of publication of
this notice to www.reginfo.gov/public/do/PRAMain. Find this particular
information collection by selecting ``Currently under 30-day Review--
Open for Public Comments'' or by using the search function.
The Office of Management and Budget is particularly interested in
comments which:
1. Evaluate whether the proposed collection of information is
necessary for the proper performance of the functions of the agency,
including whether the information will have practical utility;
2. Evaluate the accuracy of the agency's estimate of the burden of
the proposed collection of information, including the validity of the
methodology and assumptions used;
3. Enhance the quality, utility, and clarity of the information to
be collected; and
4. Minimize the burden of the collection of information on those
who are to respond, including through the use of appropriate automated,
electronic, mechanical, or other technological collection techniques or
other forms of information technology, e.g., permitting electronic
submissions of responses.
FOR FURTHER INFORMATION CONTACT: Mark Robinson, 202-740-6114,
[email protected].
SUPPLEMENTARY INFORMATION: Consistent with CISA's authorities to
``carry out comprehensive assessments of the vulnerabilities of the key
resources and critical infrastructure of the United States'' at 6
U.S.C. 652(e)(1)(B) and provide Federal and non-Federal entities with
``operational and timely technical assistance'' at 6 U.S.C. 659(c)(6)
and ``recommendation on security and resilience measures'' at 6 U.S.C.
659(c)(7), CSD VM's ReadySetCyber initiative will collect information
in order to provide tailored technical assistance, services and
resources to critical infrastructure organizations from all 16 critical
infrastructure sectors based on the maturity of their respective
cybersecurity programs.
CISA seeks to collect this information from US critical
infrastructure organizations on a strictly voluntary and fully
electronic basis so that each organization can be best supported in
meeting the CISA Cybersecurity Performance Goals. The CISA
Cybersecurity Performance Goals are a set of 38 voluntary controls
which aim to reduce the risk of cybersecurity threats to critical
infrastructure.
CISA offers a number of services and resources to aid critical
infrastructure organizations in adopting the Cybersecurity Performance
Goals and seeks to make discovery of the appropriate services and
resources as easy as possible, especially for organizations that many
have cybersecurity programs at low levels of capability. For example,
an organization that is unsure of its ability to enumerate all its
assets with Internet Protocol addresses can leverage CISA's highly
scalable vulnerability scanning service to discover additional assets
within its network range that may have been previously unknown.
Organizations with more mature cybersecurity programs who wish to
evaluate their network segmentation controls will be better positioned
to take advantage of CISA's more resource-intensive architecture
assessments.
To measure adoption of the Cybersecurity Performance Goals and
assist organizations in finding the best possible services and
resources for their cybersecurity programs, CISA is seeking to
establish a voluntary information collection that uses respondents'
answers to tailor a package of services and resources most applicable
for their level of program maturity.
Without collecting this information, CSD VM will be unable to
tailor an appropriate suite of services, recommendations, and resources
to assist that organization in protecting itself against cybersecurity
threats, thereby creating burdens of inefficiency for service
requesters and CSD VM alike. In addition, this information is critical
to CSD VM's ability to measure the adoption of CISA's Cybersecurity
Performance Goals by critical infrastructure organizations and assess
the maturity of critical infrastructure organizations' cybersecurity
programs.
The information to be collected includes: Identity and access
management, device configuration and security, date security,
governance and training, vulnerability management, supply chain risk
management, and incident response.
The Office of Management and Budget is particularly interested in
comments which:
1. Evaluate whether the proposed collection of information is
necessary for the proper performance of the functions of the agency,
including whether the information will have practical utility;
2. Evaluate the accuracy of the agency's estimate of the burden of
the proposed collection of information, including the validity of the
methodology and assumptions used;
[[Page 86143]]
3. Enhance the quality, utility, and clarity of the information to
be collected; and
4. Minimize the burden of the collection of information on those
who are to respond, including through the use of appropriate automated,
electronic, mechanical, or other technological collection techniques or
other forms of information technology, e.g., permitting electronic
submissions of responses.
Analysis
Agency: Cybersecurity and Infrastructure Security Agency (CISA),
Department of Homeland Security (DHS).
Title: ReadySetCyber.
OMB Number: 1670-NEW.
Frequency: Upon each voluntary request for technical assistance,
which CISA expects to occur on an annual basis.
Affected Public: Critical Infrastructure Owners & Operators seeking
CISA services.
Number of Respondents: Approximately 2,000 per year.
Estimated Time per Respondent: 20 minutes.
Total Burden Hours: 667 hours.
Annualized Respondent Cost: $59,663.60.
Total Annualized Respondent Out-of-Pocket Cost: $0.00.
Total Annualized Government Cost: $0.
Robert J. Costello,
Chief Information Officer, Department of Homeland Security,
Cybersecurity and Infrastructure Security Agency.
[FR Doc. 2023-27216 Filed 12-11-23; 8:45 am]
BILLING CODE 9110-9P-P