2020–2022 Strategic Pillar Retrospective
Zeph Tech backfilled the 2020–2022 record across AI, infrastructure, cybersecurity, and governance pillars using primary-source material from U.S. and EU authorities. Each subsection lists the milestones cited inside the expanded retrospective briefs.…
Zeph Tech backfilled the 2020–2022 record across AI, infrastructure, cybersecurity, and governance pillars using primary-source material from U.S. and EU authorities. Each subsection lists the milestones cited inside the expanded retrospective briefs.
Artificial intelligence
- 3 Dec 2020 — Executive Order 13960 on trustworthy AI in the federal government. The White House ordered U.S. civilian agencies to inventory AI use cases, implement risk management, and align procurement with trustworthy AI principles. 【F:zephtech-site/content/feed/2022-10-04-ai-retrospective-2020-2022.json†L25-L39】
- 1 Jan 2021 — National AI Initiative Act (Public Law 116-283). Congress stood up a National AI Initiative Office, authorised multi-agency research institutes, and mandated strategic plans that balance innovation with civil-rights safeguards. 【F:zephtech-site/content/feed/2022-10-04-ai-retrospective-2020-2022.json†L41-L55】
- 21 Apr 2021 — European Commission proposal for the Artificial Intelligence Act. The COM(2021) 206 draft created the EU risk taxonomy, notified-body regime, and prohibitions on unacceptable AI. 【F:zephtech-site/content/feed/2022-10-04-ai-retrospective-2020-2022.json†L57-L71】
- 13 Dec 2021 — NIST AI Risk Management Framework concept paper. NIST introduced the Map-Measure-Manage functions and requested operator feedback that shaped the initial AI RMF draft. 【F:zephtech-site/content/feed/2022-10-04-ai-retrospective-2020-2022.json†L73-L87】
- 28 Sep 2022 — EU Artificial Intelligence Liability Directive proposal. The Commission paired the AI Act with evidentiary disclosure duties and rebuttable presumptions for harmed parties. 【F:zephtech-site/content/feed/2022-10-04-ai-retrospective-2020-2022.json†L90-L103】
- 4 Oct 2022 — OSTP Blueprint for an AI Bill of Rights. The U.S. framework codified five human rights-based safeguards for automated systems and directed agencies toward sectoral enforcement plans. 【F:zephtech-site/content/feed/2022-10-04-ai-retrospective-2020-2022.json†L105-L119】
Infrastructure resilience
- 19 Mar 2020 — CISA essential critical infrastructure guidance. The first COVID-19 advisory memo clarified which workers qualified for on-site access to maintain energy, communications, and supply-chain continuity. 【F:zephtech-site/content/feed/2022-02-10-infrastructure-resilience-retrospective-2020-2022.json†L25-L39】
- 17 Sep 2020 — FERC Order No. 2222 on distributed energy resources. The order required RTOs and ISOs to open wholesale markets to aggregated DER and establish utility coordination processes. 【F:zephtech-site/content/feed/2022-02-10-infrastructure-resilience-retrospective-2020-2022.json†L41-L55】
- 24 Feb 2021 — Executive Order 14017 on America’s supply chains. The White House launched 100-day reviews of critical supply chains that continue to influence infrastructure sourcing plans. 【F:zephtech-site/content/feed/2022-02-10-infrastructure-resilience-retrospective-2020-2022.json†L58-L71】
- 15 Nov 2021 — Infrastructure Investment and Jobs Act (Public Law 117-58). The statute created BEAD, grid resilience grants, and the Transmission Facilitation Program. 【F:zephtech-site/content/feed/2022-02-10-infrastructure-resilience-retrospective-2020-2022.json†L74-L87】
- 14 Jan 2022 — DOE Building a Better Grid Initiative. DOE stood up the Grid Deployment Office to accelerate IIJA transmission and resilience funding guidance. 【F:zephtech-site/content/feed/2022-02-10-infrastructure-resilience-retrospective-2020-2022.json†L90-L103】
- 10 Feb 2022 — FHWA National Electric Vehicle Infrastructure (NEVI) guidance. Federal Highways translated IIJA section 11401 into state plan requirements covering uptime, payments, and Buy America milestones. 【F:zephtech-site/content/feed/2022-02-10-infrastructure-resilience-retrospective-2020-2022.json†L106-L119】
Cybersecurity
- 30 Sep 2020 — NIST Special Publication 800-207 on Zero Trust Architecture. NIST finalised the reference model federal and private defenders now follow to modernise identity, network, and data protections. 【F:zephtech-site/content/feed/2022-03-15-cybersecurity-retrospective-2020-2022.json†L25-L39】
- 13 Dec 2020 — CISA Emergency Directive 21-01. Federal agencies were ordered to disconnect compromised SolarWinds Orion assets and follow immediate forensic guidance. 【F:zephtech-site/content/feed/2022-03-15-cybersecurity-retrospective-2020-2022.json†L41-L55】
- 12 May 2021 — Executive Order 14028 on improving the nation’s cybersecurity. The EO mandated federal zero-trust adoption, supply-chain reporting, and CISA cloud logging pilots. 【F:zephtech-site/content/feed/2022-03-15-cybersecurity-retrospective-2020-2022.json†L58-L71】
- 3 Nov 2021 — CISA Binding Operational Directive 22-01. CISA created the Known Exploited Vulnerabilities catalog and set aggressive remediation timelines for federal agencies. 【F:zephtech-site/content/feed/2022-03-15-cybersecurity-retrospective-2020-2022.json†L73-L87】
- 26 Jan 2022 — OMB Memorandum M-22-09 (Federal Zero Trust Strategy). OMB set fiscal year 2024 targets for identity, device, network, application, and data security maturity. 【F:zephtech-site/content/feed/2022-03-15-cybersecurity-retrospective-2020-2022.json†L89-L103】
- 15 Mar 2022 — Cyber Incident Reporting for Critical Infrastructure Act (Division Y, Public Law 117-103). Congress granted CISA authority to mandate 72-hour incident reports and 24-hour ransom payment notices for covered entities. 【F:zephtech-site/content/feed/2022-03-15-cybersecurity-retrospective-2020-2022.json†L105-L119】
Governance and risk oversight
- 25 Nov 2020 — European Commission proposal for the Data Governance Act. The framework introduced data intermediary registration, public-sector reuse conditions, and the European Data Innovation Board. 【F:zephtech-site/content/feed/2022-03-21-governance-retrospective-2020-2022.json†L25-L39】
- 31 Mar 2021 — Basel Committee Principles for Operational Resilience. Global systemically important banks received supervisory expectations to map critical operations, establish impact tolerances, and integrate third-party risk. 【F:zephtech-site/content/feed/2022-03-21-governance-retrospective-2020-2022.json†L41-L55】
- 3 Nov 2021 — IFRS Foundation establishes the International Sustainability Standards Board. The consolidation of VRF and CDSB under IFRS set the agenda for global sustainability disclosure baselines. 【F:zephtech-site/content/feed/2022-03-21-governance-retrospective-2020-2022.json†L57-L71】
- 23 Feb 2022 — EU Corporate Sustainability Due Diligence Directive proposal. The draft directive imposes value-chain due diligence duties, board oversight, and climate transition planning requirements. 【F:zephtech-site/content/feed/2022-03-21-governance-retrospective-2020-2022.json†L73-L87】
- 21 Mar 2022 — SEC climate disclosure proposal (Release 33-11042). The Commission’s draft rule would require Scope 1 and 2 greenhouse gas disclosures and climate risk governance reporting in Form 10-K. 【F:zephtech-site/content/feed/2022-03-21-governance-retrospective-2020-2022.json†L89-L103】
Governance coverage update — December 2024
- Added dedicated briefs on Japan’s Stewardship Code revision (Mar 2020), MAS individual accountability guidelines (Sep 2020), the SEC’s shareholder proposal amendments (Sep 2020), the SEC Climate and ESG Task Force launch (Mar 2021), SEBI’s LODR third amendment (May 2021), HKEX’s Corporate Governance Code overhaul (Dec 2021), FCA diversity disclosure targets (Apr 2022), SEC clawback listing standards (Oct 2022), the EU gender balance directive (Nov 2022), OSFI’s climate risk guideline (Mar 2023), the FRC audit committee minimum standard (May 2023), and the EU ESRS delegated act (Jul 2023), alongside briefs on the FCA’s premium-listed TCFD rule (Dec 2020), MAS environmental risk governance (Dec 2020), SEC approval of Nasdaq’s board diversity rule (Aug 2021), Japan’s Corporate Governance Code revision (Jun 2021), the IFRS Foundation launch of the ISSB (Nov 2021), SEBI’s ESG rating provider regime (Jul 2022), SEC pay-versus-performance disclosures (Aug 2022), EU CSRD adoption (Dec 2022), the TSE capital-efficiency initiative (Mar 2023), the SEC cybersecurity governance rule (Jul 2023), the OECD Principles refresh (Sep 2023), and Brazil’s CVM Resolution 193 (Oct 2023). New coverage now also captures the SEC proxy voting advice amendments, SEC human capital disclosure modernization, the UK’s Restoring Trust in Audit and Corporate Governance consultation, the EU CSRD proposal, SEBI’s BRSR mandate, SASAC’s compliance measures for central SOEs, SGX’s climate reporting and board diversity rules, the EU CSDDD proposal, the SEC climate disclosure proposal, the SEC ESG fund and Names Rule proposals, the EU Council’s CSDDD general approach, the Federal Reserve’s climate risk principles for large banks, the FRC’s 2023 Corporate Governance Code consultation, and the ISSB’s IFRS S1 and S2 issuance so stakeholders can track milestones bridging the 2020–2022 retrospective and current reforms.