skip to main content

H.R. 3878 (114th): Strengthening Cybersecurity Information Sharing and Coordination in Our Ports Act of 2015


The text of the bill below is as of Nov 2, 2015 (Introduced).


I

114th CONGRESS

1st Session

H. R. 3878

IN THE HOUSE OF REPRESENTATIVES

November 2, 2015

introduced the following bill; which was referred to the Committee on Homeland Security, and in addition to the Committee on Transportation and Infrastructure, for a period to be subsequently determined by the Speaker, in each case for consideration of such provisions as fall within the jurisdiction of the committee concerned

A BILL

To enhance cybersecurity information sharing and coordination at ports in the United States, and for other purposes.

1.

Short title

This Act may be cited as the Strengthening Cybersecurity Information Sharing and Coordination in Our Ports Act of 2015.

2.

Enhancing cybersecurity situational awareness and information sharing

Not later than 30 days after the date of the enactment of this Act, the Secretary of Homeland Security shall seek to enhance cybersecurity situational awareness and information sharing between and with maritime security stakeholders, by—

(1)

directing the Under Secretary responsible for overseeing critical infrastructure protection, cybersecurity, and other related programs of the Department of Homeland Security, in consultation with the Commandant of the Coast Guard, to seek to enhance participation by the Maritime Information Sharing and Analysis Center (an independent, non-profit entity sponsored and managed by the Maritime Security Council) in the National Cybersecurity and Communications Integration Center, pursuant to section 226(d)(1)(B) of the Homeland Security Act of 2002 (6 U.S.C. 148(d)(1)(B)); and

(2)

requesting that the National Maritime Security Advisory Committee established under section 70112 of title 46, United States Code, report and make recommendations to the Secretary on matters relating to methods to enhance cybersecurity situational awareness and information sharing between and with maritime security stakeholders, including the establishment of a council to facilitate national-level sharing of security information and coordination of strategies to mitigate cybersecurity risks in the maritime sector.

3.

Improving cybersecurity information sharing at ports

The Secretary of Homeland Security, acting through the Commandant of the Coast Guard, in coordination with the Under Secretary responsible for overseeing critical infrastructure protection, cybersecurity, and other related programs of the Department of Homeland Security, shall direct each captain of the port designated under section 634 of title 14, United States Code, to establish a working group of members of Area Maritime Security Advisory Committees established under section 70112 of title 46, United States Code, to facilitate the sharing of information about and development of plans to address port-specific cybersecurity vulnerabilities.

4.

Area Maritime Security Plans

The Secretary of Homeland Security, acting through the Commandant of the Coast Guard, shall require that any Area Maritime Security Plan and facility security plan required by section 70103 of title 46, United States Code, that is approved after the date of enactment of this Act address cyber threats and vulnerabilities and include mitigation measures to prevent, manage, and respond to such threats and vulnerabilities.

5.

Cyber risk assessment

The Secretary of Homeland Security shall ensure that any maritime security risk assessment prepared by the Department of Homeland Security after the date of the enactment of this Act shall include cybersecurity risks to ports and the maritime border of the United States.

6.

Reports to Congress

(a)

Status updates

The Secretary of Homeland Security shall submit to the Committee on Homeland Security of the House of Representatives and the Committee on Homeland Security and Governmental Affairs of the Senate—

(1)

not later than one year after the date of the enactment of this Act and on an annual basis thereafter, information on the actions taken pursuant to this Act and their impact and effectiveness at enhancing cybersecurity situational awareness and information sharing between and with maritime security stakeholders; and

(2)

not later than 90 days after receiving recommendations from the National Maritime Security Advisory Committee pursuant to section 2, the advisory committee recommendations and any feedback from the Secretary regarding such recommendations.

7.

Maritime security stakeholders defined

In this Act the term maritime security stakeholders means appropriate Federal, State, local, and tribal governments; public safety and emergency response agencies; law enforcement and security organizations; maritime industry participants; port owners and operators; and maritime terminal owners and operators.