[Congressional Bills 118th Congress]
[From the U.S. Government Publishing Office]
[S. 5064 Introduced in Senate (IS)]

<DOC>






118th CONGRESS
  2d Session
                                S. 5064

To amend title 46, United States Code, to require applicants for grants 
 that propose to use digital infrastructure or a software component to 
certify the applicant has an approved security plan that addresses the 
cybersecurity risks of such digital infrastructure or software, and for 
                            other purposes.


_______________________________________________________________________


                   IN THE SENATE OF THE UNITED STATES

                           September 17, 2024

Mr. Cornyn (for himself and Mr. Peters) introduced the following bill; 
    which was read twice and referred to the Committee on Commerce, 
                      Science, and Transportation

_______________________________________________________________________

                                 A BILL


 
To amend title 46, United States Code, to require applicants for grants 
 that propose to use digital infrastructure or a software component to 
certify the applicant has an approved security plan that addresses the 
cybersecurity risks of such digital infrastructure or software, and for 
                            other purposes.

    Be it enacted by the Senate and House of Representatives of the 
United States of America in Congress assembled,

SECTION 1. SHORT TITLE.

    This Act may be cited as the ``Protecting Investments in Our Ports 
Act''.

SEC. 2. PORT INFRASTRUCTURE DEVELOPMENT PROGRAM APPLICATION PROCESS.

    Section 54301(a)(5)(A) of title 46, United States Code, is 
amended--
            (1) by striking ``To be eligible'' and inserting the 
        following:
                            ``(i) In general.--To be eligible''; and
            (2) by adding at the end the following:
                            ``(ii) Ensuring cybersecurity.--If an 
                        applicant for a grant under this subsection is 
                        applying to use the grant to acquire digital 
                        infrastructure or a software component, such 
                        applicant shall--
                                    ``(I) certify the applicant has an 
                                approved security plan pursuant to 
                                section 70103(c) that addresses the 
                                cybersecurity risks of such digital 
                                infrastructure or software; or
                                    ``(II) provide a brief description 
                                in the application of how the applicant 
                                will address the cybersecurity risks of 
                                such digital infrastructure or software 
                                if the applicant does not have such 
                                approved security plan.
                            ``(iii) Update of facility security plan.--
                        An applicant for a grant under this subsection 
                        applying to use such grant to acquire digital 
                        infrastructure or a software component that 
                        does not have an approved security plan 
                        pursuant to section 70103(c) that addresses the 
                        cybersecurity risks of such digital 
                        infrastructure or software shall ensure that 
                        the security plan under section 70103(c) of 
                        such applicant is updated to address the 
                        cybersecurity risks described in clause 
                        (ii)(II) in the next update required under 
                        paragraph (3)(G) of such section.''.
                                 <all>