It has been one year since the Cyber Incident Reporting for Critical Infrastructure Act of 2022 (CIRCIA) was signed into law – and only a couple of weeks since the release of the 2023 National Cybersecurity Strategy. In the shadow of these cybersecurity milestones, this month CISA announced two major initiatives to address the ongoing, global ransomware epidemic.