[Congressional Bills 115th Congress]
[From the U.S. Government Publishing Office]
[S. 2999 Introduced in Senate (IS)]

<DOC>






115th CONGRESS
  2d Session
                                S. 2999

 To require Commander of the United States Cyber Command and others to 
 conduct a tier 1 exercise of support to civil authorities for a cyber 
                   incident, and for other purposes.


_______________________________________________________________________


                   IN THE SENATE OF THE UNITED STATES

                              June 6, 2018

  Mr. Rounds introduced the following bill; which was read twice and 
              referred to the Committee on Armed Services

_______________________________________________________________________

                                 A BILL


 
 To require Commander of the United States Cyber Command and others to 
 conduct a tier 1 exercise of support to civil authorities for a cyber 
                   incident, and for other purposes.

    Be it enacted by the Senate and House of Representatives of the 
United States of America in Congress assembled,

SECTION 1. SHORT TITLE.

    This Act may be cited as the ``National Cybersecurity Exercise Act 
of 2018''.

SEC. 2. TIER 1 EXERCISE OF SUPPORT TO CIVIL AUTHORITIES FOR A CYBER 
              INCIDENT.

    (a) In General.--The Commander of the United States Cyber Command, 
the Commander of United States Northern Command, and such other 
commands or components of the Department of Defense as the Secretary of 
Defense considers appropriate, shall, consistent with the 
recommendations made by the Comptroller General of the United States in 
the Government Accountability Office report GAO-16-574, conduct a tier 
1 exercise of support to civil authorities for a cyber incident.
    (b) Elements.--The exercise required by subsection (a) shall 
include the following:
            (1) Department level leadership and decision-making for 
        providing cyber support to civil authorities.
            (2) Testing of the policy, guidance, doctrine and other 
        elements in the Department of Defense Cyber Incident 
        Coordinating Procedure.
            (3) Operational planning and execution by the Joint Staff 
        and supported and supporting combatant commands.
            (4) Coordination with, and incorporation of, as 
        appropriate, the Department of Homeland Security, the Federal 
        Bureau of Investigation, and elements across Federal and State 
        governments and the private sector.
                                 <all>