That process is in various forms of maturity for different sectors. It builds upon what DHS/CISA [the US Cybersecurity and Infrastructure Security Agency] is doing in communicating about vulnerabilities and cybersecurity mitigations, by involving regulators so they can ensure we’re getting on-the-ground impacts.
Source: Wired – Threat Level