[Congressional Record Volume 168, Number 40 (Monday, March 7, 2022)]
[House]
[Pages H1312-H1313]
From the Congressional Record Online through the Government Publishing Office [www.gpo.gov]
NATIONAL CYBERSECURITY PREPAREDNESS CONSORTIUM ACT OF 2021
Mrs. DEMINGS. Madam Speaker, I move to suspend the rules and pass the
bill (S. 658) to authorize the Secretary of Homeland Security to work
with cybersecurity consortia for training, and for other purposes, as
amended.
The Clerk read the title of the bill.
The text of the bill is as follows:
S. 658
Be it enacted by the Senate and House of Representatives of
the United States of America in Congress assembled,
SECTION 1. SHORT TITLE.
This Act may be cited as the ``National Cybersecurity
Preparedness Consortium Act of 2021''.
SEC. 2. NATIONAL CYBERSECURITY PREPAREDNESS CONSORTIUM.
(a) In General.--The Secretary may work with one or more
consortia to support efforts to address cybersecurity risks
and incidents.
(b) Assistance to DHS.--The Secretary may work with one or
more consortia to carry out the Secretary's responsibility
pursuant to section 2202(e)(1)(P) of the Homeland Security
Act of 2002 (6 U.S.C. 652(e)(1)(P)) to--
(1) provide training and education to State, Tribal, and
local first responders and officials specifically for
preparing for and responding to cybersecurity risks and
incidents, in accordance with applicable law;
(2) develop and update a curriculum utilizing existing
training and educational programs and models in accordance
with section 2209 of the Homeland Security Act of 2002 (6
U.S.C. 659), for State, Tribal, and local first responders
and officials, related to cybersecurity risks and incidents;
(3) provide technical assistance services, training, and
educational programs to build and sustain capabilities in
support of preparedness for and response to cybersecurity
risks and incidents, including threats of acts of terrorism,
in accordance with such section 2209;
(4) conduct cross-sector cybersecurity training, education,
and simulation exercises for entities, including State and
local governments and Tribal organizations, critical
infrastructure owners and operators, and private industry, to
encourage community-wide coordination in defending against
and responding to cybersecurity risks and incidents, in
accordance with section 2210(c) of the Homeland Security Act
of 2002 (6 U.S.C. 660(c));
(5) help States, Tribal organizations, and communities
develop cybersecurity information sharing programs, in
accordance with section 2209 of the Homeland Security Act of
2002 (6 U.S.C. 659), for the dissemination of homeland
security information related to cybersecurity risks and
incidents;
(6) help incorporate cybersecurity risk and incident
prevention and response into existing State, Tribal, and
local emergency plans, including continuity of operations
plans; and
(7) assist State governments and Tribal organizations in
developing cybersecurity plans.
(c) Considerations Regarding Selection of a Consortium.--In
selecting a consortium with which to work under this Act, the
Secretary shall take into consideration the following:
(1) Prior experience conducting cybersecurity training,
education, and exercises for State and local entities.
(2) Geographic diversity of the members of any such
consortium so as to maximize coverage of the different
regions of the United States.
(3) The participation in such consortium of one or more
historically Black colleges and universities, Hispanic-
serving institutions, Tribal Colleges and Universities, other
minority-serving institutions, and community colleges that
participate in the National Centers of Excellence in
Cybersecurity program, as carried out by the Department of
Homeland Security.
(d) Metrics.--If the Secretary works with a consortium
under subsection (a), the Secretary shall measure the
effectiveness of the activities undertaken by the consortium
under this Act.
(e) Outreach.--The Secretary shall conduct outreach to
universities and colleges, including, in particular, outreach
to historically Black colleges and universities, Hispanic-
serving institutions, Tribal Colleges and Universities, other
minority-serving institutions, and community colleges,
regarding opportunities to support efforts to address
cybersecurity risks and incidents, by working with the
Secretary under subsection (a).
(f) Rule of Construction.--Nothing in this section may be
construed to authorize a consortium to control or direct any
law enforcement agency in the exercise of the duties of the
law enforcement agency.
(g) Definitions.--In this section--
(1) the term ``community college'' has the meaning given
the term ``junior or community college'' in section 312 of
the Higher Education Act of 1965 (20 U.S.C. 1058);
(2) the term ``consortium'' means a group primarily
composed of nonprofit entities, including academic
institutions, that develop, update, and deliver cybersecurity
training and education in support of homeland security;
(3) the terms ``cybersecurity risk'' and ``incident'' have
the meanings given those terms in section 2209(a) of the
Homeland Security Act of 2002 (6 U.S.C. 659(a));
(4) the term ``Department'' means the Department of
Homeland Security;
(5) the term ``Hispanic-serving institution'' has the
meaning given the term in section 502 of the Higher Education
Act of 1965 (20 U.S.C. 1101a);
(6) the term ``historically Black college and university''
has the meaning given the term ``part B institution'' in
section 322 of the Higher Education Act of 1965 (20 U.S.C.
1061);
(7) the term ``minority-serving institution'' means an
institution of higher education described in section 371(a)
of the Higher Education Act of 1965 (20 U.S.C. 1067q(a));
(8) the term ``Secretary'' means the Secretary of Homeland
Security;
(9) The term ``State'' means any State of the United
States, the District of Columbia, the Commonwealth of Puerto
Rico, the United States Virgin Islands, Guam, American Samoa,
the Commonwealth of the Northern Mariana Islands, and any
possession of the United States;
(10) the term ``Tribal Colleges and Universities'' has the
meaning given the term in section 316 of the Higher Education
Act of 1965 (20 U.S.C. 1059c); and
(11) the term ``Tribal organization'' has the meaning given
the term in section 4(e) of the Indian Self-Determination and
Education Assistance Act (25 U.S.C. 5304(e)).
The SPEAKER pro tempore. Pursuant to the rule, the gentlewoman from
Florida (Mrs. Demings) and the gentleman from New York (Mr. Katko) each
will control 20 minutes.
The Chair recognizes the gentlewoman from Florida.
General Leave
Mrs. DEMINGS. Madam Speaker, I ask unanimous consent that all Members
may have 5 legislative days in which to revise and extend their remarks
and include extraneous material on this measure.
The SPEAKER pro tempore. Is there objection to the request of the
gentlewoman from Florida?
There was no objection.
Mrs. DEMINGS. Madam Speaker, I yield myself such time as I may
consume.
Madam Speaker, now more than ever it is critical that State and local
governments, along with the private sector, prioritize their
cybersecurity preparedness. The threat of cyberattacks continues to
grow, and with the ongoing Russian invasion of Ukraine, we are reminded
yet again of the importance of stronger cybersecurity.
Since 2004, DHS has partnered with the National Cybersecurity
Preparedness Consortium, a group of universities that conduct research
and training to help entities better prepare for cyber risks. This
legislation will authorize the consortium to help strengthen our
Nation's cybersecurity preparedness.
More specifically, S. 658 authorizes DHS to partner with a consortium
of nonprofit entities to provide training to first responders, develop
curriculums for training programs, conduct cross-sector exercises to
defend and respond to cyber threats, and help incorporate cyber risk
into State and local emergency plans.
Last year, Congress provided $1 billion in new grants to State and
local governments to strengthen their cybersecurity. Ensuring they have
access to advice and support to develop their cybersecurity
preparedness plans is an additional step we can take to enhance our
Nation's cybersecurity.
Additionally, Chairman Thompson offered an amendment during the
committee markup that strengthened the bill by ensuring that DHS can
partner with more than one consortium; adding the inclusion of HBCUs,
MSIs, and community colleges as a factor in the selection of a
consortium; and promoting greater geographic diversity among
participating institutions.
[[Page H1313]]
All communities across the Nation need to prioritize cybersecurity
preparedness. These changes should ensure that DHS partners with a
diverse range of institutions to better assist the many different types
of State and local governments that would benefit from enhanced
cybersecurity preparedness.
I thank Senators Cornyn and Leahy for their leadership in authorizing
this legislation and for working with the Homeland Security Committee
to make improvements to this bill.
Madam Speaker, I urge my House colleagues to support this
legislation, and I reserve the balance of my time.
Mr. KATKO. Madam Speaker, I yield myself such time as I may consume.
I rise today in support of S. 658, the National Cybersecurity
Preparedness Consortium Act. This bill authorizes the Department of
Homeland Security to work with the National Cybersecurity Preparedness
Consortium to help prepare for and respond to cybersecurity risks at
the national, State, and local levels.
I applaud Senator Cornyn for his steadfast dedication to this most
important piece of legislation. Now more than ever, our State and local
communities must be prepared to prevent, detect, and mitigate cyber
threats. Unfortunately, many of us have had constituent businesses,
schools, and hospitals, among others, that have been impacted by
persistent and evolving cyber threats.
This legislation will help provide training, exercises, technical
assistance, and other important resources to State and local
governments, critical infrastructure, and industry partners.
I thank Senator Cornyn for his work on this important bill. I urge
Members to join me in supporting S. 658, and I yield back the balance
of my time.
Mrs. DEMINGS. Madam Speaker, I yield myself the balance of my time.
Madam Speaker, the best time to prioritize cybersecurity is before
you experience a cyber incident. Cybersecurity preparedness is
essential, yet most State and local governments do not have the
experience, expertise, or resources to do it alone. They need a Federal
partner.
Enactment of S. 658 delivers on that partnership through a network of
consortiums across the country.
Madam Speaker, I urge my colleagues to support S. 658, as amended,
and I yield back the balance of my time.
The SPEAKER pro tempore. The question is on the motion offered by the
gentlewoman from Florida (Mrs. Demings) that the House suspend the
rules and pass the bill, S. 658, as amended.
The question was taken.
The SPEAKER pro tempore. In the opinion of the Chair, two-thirds
being in the affirmative, the ayes have it.
Mrs. GREENE of Georgia. Madam Speaker, on that I demand the yeas and
nays.
The SPEAKER pro tempore. Pursuant to section 3(s) of House Resolution
8, the yeas and nays are ordered.
Pursuant to clause 8 of rule XX, further proceedings on this motion
are postponed.
____________________