BSA recommends that the US government create a single, harmonized menu of cybersecurity requirements, from which regulators can select to achieve their policy goals.  To create, implement, and maintain this menu of cybersecurity requirements, BSA proposes a five-step plan: map all existing requirements, assess and consolidate them, create a unified menu, mandate alignment with that menu, and sustain harmonization through a centralized update process.