skip to main content

H.R. 2105 (115th): NIST Small Business Cybersecurity Act

Call or Write Congress

About the bill

Source: Republican Policy Committee

H.R. 2105 directs NIST, in consultation with other federal agencies, to disseminate clear and concise guidance to help small business identify, assess, manage, and reduce their cybersecurity risks. This guidance is to be based on the NIST Framework for Improving Critical Infrastructure Cybersecurity (NIST Cybersecurity Framework), and its implementation is voluntary by small businesses.

NIST guidance and resources provided must: (1) be generally applicable and usable by a wide range of small businesses, (2) vary with the nature and size of the small business and the nature and sensitivity ...

Sponsor and status

Daniel Webster

Sponsor. Representative for Florida's 11th congressional district. Republican.

Read Text »
Last Updated: Oct 16, 2017
Length: 6 pages
Apr 20, 2017
115th Congress, 2017–2019
Enacted Via Other Measures

Provisions of this bill were incorporated into other bills which were enacted.

This bill was enacted as:

S. 770: NIST Small Business Cybersecurity Act
Enacted — Signed by the President on Aug 14, 2018. (compare text)

Position statements

What legislators are saying

Trump Signs Webster’s Small Business Cybersecurity Bill
    — Rep. Daniel Webster [R-FL11] (Sponsor) on Aug 14, 2018

Lipinski Bill Helping Small Businesses Strengthen Cybersecurity Signed Into Law
    — Rep. Daniel Lipinski [D-IL3] (Co-sponsor) on Sep 6, 2018

THIS WEEK IN CONGRESS - Help for deported vets
    — Rep. Gregorio Sablan [D-MP0] on Oct 15, 2017

More statements at ProPublica Represent...

What stakeholders are saying

Institute for Spending Reform estimates H.R. 2105 will add $6 million in new spending through 2022.


Apr 20, 2017

Bills and resolutions are referred to committees which debate the bill before possibly sending it on to the whole chamber.

May 2, 2017
Ordered Reported

A committee has voted to issue a report to the full chamber recommending that the bill be considered further. Only about 1 in 4 bills are reported out of committee.

Oct 11, 2017
Passed House (Senate next)

The bill was passed in a vote in the House. It goes to the Senate next. The vote was by voice vote so no record of individual votes was made.

H.R. 2105 (115th) was a bill in the United States Congress.

A bill must be passed by both the House and Senate in identical form and then be signed by the President to become law.

This bill was introduced in the 115th Congress, which met from Jan 3, 2017 to Jan 3, 2019. Legislation not enacted by the end of a Congress is cleared from the books.

How to cite this information.

We recommend the following MLA-formatted citation when using the information you see here in academic work:

“H.R. 2105 — 115th Congress: NIST Small Business Cybersecurity Act.” 2017. October 18, 2019 <>

Where is this information from?

GovTrack automatically collects legislative information from a variety of governmental and non-governmental sources. This page is sourced primarily from, the official portal of the United States Congress. is generally updated one day after events occur, and so legislative activity shown here may be one day behind. Data via the congress project.