Skip to main content

About

We use AI to transform mandatory incident reporting into actionable cyber defense information for your organization and others within your critical infrastructure sector.


In the current cybersecurity environment:

    • Vulnerabilities are increasing across all infrastructure sectors.
    • Exploit Latency time (time to exploitation) is rapidly decreasing.
    • Rapid identification and response are critical.
    • Critical infrastructure companies will be required to report to CISA within 72 hours after experiencing a substantial cyber incident. (Small businesses generally exempt).


Our Solution

Sector-Wide Incident Monitoring & Reporting:  We provide near-real time, sector-wide cyber incident awareness for rapid, proactive, mitigative response.

AI vs AI

If our adversaries are going to use offensive AI against our critical infrastructure then we should use defensive AI to protect it.

- Dr. Michael L. Cohen

CEO, Critical Infrastructure Systems

CIRCIA

CISA CIRCIA

CIRCIA (Cyber Incident Reporting for Critical Infrastructure Act of 2022) is a U.S. law requiring critical infrastructure entities to report major cyber incidents (within 72 hours) and ransomware payments (within 24 hours) to CISA. Finalized rules are aimed at strengthening national security by enhancing threat intelligence sharing. They were  expected by May 2026 but delayed due to federal appropriations disruptions. Town halls have been rescheduled and are available for registration.

Summary

Purpose: To enable rapid response, damage mitigation, and trend analysis across critical sectors.


Target Entities: Organizations in 16 critical infrastructure sectors, including energy, healthcare, finance, and communications.


Reporting Timeline: Cyber Incidents: Within 72 hours of reasonable belief of occurrence. Ransom Payments: Within 24 hours of payment.


Requirements: Covered entities must report technical details, affected systems, and attacker information


Regulatory Authority: The Cybersecurity and Infrastructure Security Agency (CISA) is responsible for implementation.

Value
Added

We turn CIRCIA’s mandatory one-way information sharing into a set of two-way value-added cyber defense services via your ISAC

Our Team

Adam Beal, MBA

Operations

CFO

Mike Cohen, PhD

Cybersecurity & 

Critical Infrastructure

CEO

Mike Hadjimichael, PhD

Artificial Intelligence

CTO

Contact Us for More Information or to Schedule a Demo