Ask AI
Bill114th CongressFiled Nov 2, 2015Transportation and Public Works
H.R. 3878

Strengthening Cybersecurity Information Sharing and Coordination in Our Ports Act of 2015

Bill journey · stage 1 of 5

Just introduced

Filed
Comm.
Floor
Both
Law

What it doesSummary passed house amended (Dec 16, 2015)

Strengthening Cybersecurity Information Sharing and Coordination in Our Ports Act of 2015

(Sec. 2) This bill requires the Department of Homeland Security (DHS) to implement, and evaluate at least every two years, a maritime cybersecurity risk assessment model to evaluate current and future cybersecurity risks. The model must be consistent with the National Institute of Standards and Technology Framework for Improving Critical Infrastructure Cybersecurity and any updates pursuant to the Cybersecurity Enhancement Act of 2014.

DHS must also: (1) seek to ensure participation of at least one information sharing and analysis organization representing the maritime community in the National Cybersecurity and Communications Integration Center (NCCIC); (2) establish guidelines for voluntary reporting of maritime-related cybersecurity risks and incidents to the NCCIC and other appropriate federal agencies; and (3) request the National Maritime Security Advisory Committee to report and make recommendations to DHS regarding the enhancement of cybersecurity information sharing between relevant federal agencies and state, local, and tribal governments, public safety and emergency response agencies, law enforcement and security organizations, the maritime industry, port owners and operators, and terminal owners and operators.

(Sec. 3) The Coast Guard must: (1) direct Area Maritime Security Advisory Committees to facilitate the sharing of cybersecurity risks and incidents to address port-specific cybersecurity risks, including, possibly, by establishing a working group of members of such committees to address port-specific cybersecurity vulnerabilities; and (2) require area maritime security plans and facility security plans to include a mitigation plan to prevent, manage, and respond to cybersecurity risks.

(Sec. 4) DHS's vulnerability assessments of facilities and vessels that may be involved in a transportation security incident must identify weaknesses in cybersecurity. Owners or operators of such vessels or facilities must include provisions regarding prevention, management, and response to cybersecurity risks in their security plans for deterring such incidents.

What just happenedFeb 1, 2016

Star Print ordered on the bill.

Who’s behind it

Rep. Torres, Norma J. [D-CA-35](D-CA)Sponsor
3 cosponsors2 D1 R
Read on Congress.gov
3cosponsors3committees20actions1related bills10subjects
  1. Feb 1, 2016Floor

    Star Print ordered on the bill.

  2. Dec 17, 2015IntroReferral

    Received in the Senate and Read twice and referred to the Committee on Commerce, Science, and Transportation.

    Commerce, Science, and Transportation Committee
  3. Dec 16, 2015FloorH38310

    Motion to reconsider laid on the table Agreed to without objection.

  4. Dec 16, 2015FloorH37300

    On motion to suspend the rules and pass the bill, as amended Agreed to by voice vote. (text: CR H9353)

  5. Dec 16, 2015Floor8000

    Passed/agreed to in House: On motion to suspend the rules and pass the bill, as amended Agreed to by voice vote.(text: CR H9353)

  6. Dec 16, 2015FloorH8D000

    DEBATE - The House proceeded with forty minutes of debate on H.R. 3878.

  7. Dec 16, 2015FloorH30000

    Considered under suspension of the rules. (consideration: CR H9352-9355)

  8. Dec 16, 2015FloorH30300

    Mrs. Miller (MI) moved to suspend the rules and pass the bill, as amended.

  9. Dec 15, 2015CalendarsH12410

    Placed on the Union Calendar, Calendar No. 288.

  10. Dec 15, 2015DischargeH12300

    Committee on Transportation discharged.

    Transportation and Infrastructure Committee
  11. Dec 15, 2015Committee5500

    Committee on Transportation discharged.

    Transportation and Infrastructure Committee
  12. Dec 15, 2015CommitteeH12200

    Reported (Amended) by the Committee on Homeland Security. H. Rept. 114-379, Part I.

    Homeland Security Committee
  13. Dec 15, 2015Committee5000

    Reported (Amended) by the Committee on Homeland Security. H. Rept. 114-379, Part I.

    Homeland Security Committee
  14. Nov 4, 2015Committee

    Ordered to be Reported (Amended) by Voice Vote.

    Homeland Security Committee
  15. Nov 4, 2015Committee

    Committee Consideration and Mark-up Session Held.

    Homeland Security Committee
  16. Nov 2, 2015IntroReferralH11100

    Referred to the Committee on Homeland Security, and in addition to the Committee on Transportation and Infrastructure, for a period to be subsequently determined by the Speaker, in each case for consideration of such provisions as fall within the jurisdiction of the committee concerned.

    Transportation and Infrastructure Committee
  17. Nov 2, 2015IntroReferralH11100-A

    Referred to the Committee on Homeland Security, and in addition to the Committee on Transportation and Infrastructure, for a period to be subsequently determined by the Speaker, in each case for consideration of such provisions as fall within the jurisdiction of the committee concerned.

  18. Nov 2, 2015IntroReferralH11100

    Referred to the Committee on Homeland Security, and in addition to the Committee on Transportation and Infrastructure, for a period to be subsequently determined by the Speaker, in each case for consideration of such provisions as fall within the jurisdiction of the committee concerned.

    Homeland Security Committee
  19. Nov 2, 2015IntroReferralIntro-H

    Introduced in House

  20. Nov 2, 2015IntroReferral1000

    Introduced in House

Passed House amendedDec 16, 201536

Strengthening Cybersecurity Information Sharing and Coordination in Our Ports Act of 2015

(Sec. 2) This bill requires the Department of Homeland Security (DHS) to implement, and evaluate at least every two years, a maritime cybersecurity risk assessment model to evaluate current and future cybersecurity risks. The model must be consistent with the National Institute of Standards and Technology Framework for Improving Critical Infrastructure Cybersecurity and any updates pursuant to the Cybersecurity Enhancement Act of 2014.

DHS must also: (1) seek to ensure participation of at least one information sharing and analysis organization representing the maritime community in the National Cybersecurity and Communications Integration Center (NCCIC); (2) establish guidelines for voluntary reporting of maritime-related cybersecurity risks and incidents to the NCCIC and other appropriate federal agencies; and (3) request the National Maritime Security Advisory Committee to report and make recommendations to DHS regarding the enhancement of cybersecurity information sharing between relevant federal agencies and state, local, and tribal governments, public safety and emergency response agencies, law enforcement and security organizations, the maritime industry, port owners and operators, and terminal owners and operators.

(Sec. 3) The Coast Guard must: (1) direct Area Maritime Security Advisory Committees to facilitate the sharing of cybersecurity risks and incidents to address port-specific cybersecurity risks, including, possibly, by establishing a working group of members of such committees to address port-specific cybersecurity vulnerabilities; and (2) require area maritime security plans and facility security plans to include a mitigation plan to prevent, manage, and respond to cybersecurity risks.

(Sec. 4) DHS's vulnerability assessments of facilities and vessels that may be involved in a transportation security incident must identify weaknesses in cybersecurity. Owners or operators of such vessels or facilities must include provisions regarding prevention, management, and response to cybersecurity risks in their security plans for deterring such incidents.

Reported to House amended, Part IDec 15, 201518

Strengthening Cybersecurity Information Sharing and Coordination in Our Ports Act of 2015

(Sec. 2) This bill requires the Department of Homeland Security (DHS) to implement, and evaluate at least every two years, a maritime cybersecurity risk assessment model to evaluate current and future cybersecurity risks. The model must be consistent with the National Institute of Standards and Technology Framework for Improving Critical Infrastructure Cybersecurity and any updates pursuant to the Cybersecurity Enhancement Act of 2014.

DHS must also: (1) seek to ensure participation of at least one information sharing and analysis organization representing the maritime community in the National Cybersecurity and Communications Integration Center (NCCIC); (2) establish guidelines for voluntary reporting of maritime-related cybersecurity risks and incidents to the NCCIC and other appropriate federal agencies; and (3) request the National Maritime Security Advisory Committee to report and make recommendations to DHS regarding the enhancement of cybersecurity information sharing between relevant federal agencies and state, local, and tribal governments, public safety and emergency response agencies, law enforcement and security organizations, the maritime industry, port owners and operators, and terminal owners and operators.

(Sec. 3) The Coast Guard must: (1) direct Area Maritime Security Advisory Committees to facilitate the sharing of cybersecurity risks and incidents to address port-specific cybersecurity risks, including, possibly, by establishing a working group of members of such committees to address port-specific cybersecurity vulnerabilities; and (2) require area maritime security plans and facility security plans to include a mitigation plan to prevent, manage, and respond to cybersecurity risks.

(Sec. 4) DHS's vulnerability assessments of facilities and vessels that may be involved in a transportation security incident must identify weaknesses in cybersecurity. Owners or operators of such vessels or facilities must include cybersecurity provisions in their security plans for deterring such incidents.

Introduced in HouseNov 2, 2015

Strengthening Cybersecurity Information Sharing and Coordination in Our Ports Act of 2015

This bill requires the Department of Homeland Security (DHS) to seek to enhance cybersecurity situational awareness and information sharing between and with maritime security stakeholders from federal, state, local, and tribal governments, public safety and emergency response agencies, law enforcement and security organizations, maritime industry participants, port owners and operators, and maritime terminal owners and operators.

DHS must: (1) consult with the Coast Guard to enhance participation by the Maritime Information Sharing and Analysis Center in the National Cybersecurity and Communications Integration Center; and (2) request that the National Maritime Security Advisory Committee report and make recommendations to DHS on methods to enhance cybersecurity and information sharing between such stakeholders, including the establishment of a council to facilitate national-level sharing of security information and coordination of strategies to mitigate cybersecurity risks in the maritime sector.

The Coast Guard must direct captains of designated ports to establish a working group of members of Area Maritime Security Advisory Committees to facilitate the sharing of information about, and development of plans to address, port-specific cybersecurity vulnerabilities.

The Coast Guard must also require that Area Maritime Security Plans and facility security plans approved after enactment of this Act include mitigation measures to prevent, manage, and respond to cyber threats and vulnerabilities.

DHS must ensure that maritime security risk assessments include cybersecurity risks to ports and the maritime border of the United States.

Strengthening Cybersecurity Information Sharing and Coordination in Our Ports Act of 2015 — Informed