Attacks and Vulnerabilities
Critical infrastructure
News
Risk & Compliance
Threat Landscape
Vulnerabilities

US lawmakers bring in legislation to enable Congressional defenders to receive timely cybersecurity information

April 07, 2022
US lawmakers bring in legislation to enable Congressional defenders to receive timely cybersecurity information

A group of U.S. senators has introduced bipartisan legislation that ensures sharing of cybersecurity information between operational cybersecurity staff in the executive branch and the Senate and House of Representatives. The legislation will ensure that cybersecurity defenders in Congress are able to work collaboratively and directly with cybersecurity defenders in the executive branch, and will require regular reporting to Congress on the status of implementation. 

The bill titled ‘Intragovernmental Cybersecurity Information Sharing Act’ would ensure the Sergeant at Arms and Doorkeeper of the Senate and the Chief Administrative Officer of the House of Representatives receive direct, timely, and actionable cybersecurity information from the executive branch. 

The legislation has been introduced by four U.S. Senators, including Senator Rob Portman, a Republican from Ohio and ranking member of the Senate Homeland Security and Governmental Affairs Committee, Amy Klobuchar, a Democrat from Minnesota, and chairwoman of the Senate Rules Committee, Roy Blunt, a Republican from Missouri and ranking member of the Senate Rules Committee, and Gary Peters, a Democrat from Michigan and chairman of the Senate Homeland Security and Governmental Affairs Committee. 

According to the provisions of the bill, “Not later than 210 days after the date of enactment of this Act, and periodically thereafter, the Secretary of Homeland Security shall brief the Committee on Homeland Security and Governmental Affairs and the Committee on Rules and Administration of the Senate and the Committee on Homeland Security and the Committee on House Administration of the House of Representatives on the status of the implementation of the agreements.”

“As we have recently seen, cyberattacks are increasing against our critical infrastructure as well as the federal government. Unfortunately, some of the cybersecurity professionals in Congress have faced lengthy delays in getting information on cybersecurity threats from the Executive Branch. That should not be the case,” Portman said in a media statement on Tuesday. 

“Our cyber adversaries move quickly and do not distinguish between branches of government—we need a unified and coordinated defense,” according to Portman. “That is why we have introduced this bipartisan legislation requiring the Department of Homeland Security to enter cybersecurity information-sharing agreements with the Sergeant at Arms of the Senate and Chief Administrative Officer of the House of Representatives,” he added. 

“Cybersecurity threats against our government require a timely, coordinated response. Yet too often a lack of communication between the Department of Homeland Security and Congress leaves us vulnerable to damaging cyberattacks,” according to Klobuchar. “This bipartisan legislation will better protect us against cyberattacks by requiring the Department of Homeland Security to increase cybersecurity information sharing with Congress.”  

“The federal government faces more cyberattacks from more directions than ever before,” Blunt said. “This legislation will help ensure Congress’s cybersecurity professionals have access to the timely and sensitive information they need to better protect the House and Senate from the alarming rise in cyberattacks.” 

Foreign adversaries, like the Russian government, and cybercriminals continue to target our nation’s most essential public and private networks. That is why our different branches of government must work together to bolster the security of all federal systems, including those in Congress, that store a considerable amount of sensitive information,” according to Peters. “This commonsense, bipartisan bill will make sure that professionals in charge of securing House and Senate networks are working closely with our nation’s lead cybersecurity agencies to address online threats.”

Last month, a member of the House Committee on Homeland Security introduced bipartisan supported legislation, ‘DHS Industrial Control Systems Enhancement Act of 2021,’ in a critical step that could help to solidify the Cybersecurity & Infrastructure Security Agency’s (CISA) lead role in protecting the critical infrastructure in the U.S., especially industrial control systems (ICS), from cyber threats.

Anna Ribeiro
Industrial Cyber News Editor. Anna Ribeiro is a freelance journalist with over 14 years of experience in the areas of security, data storage, virtualization and IoT.

A complimentary guide to the who`s who in industrial cybersecurity tech & solutions

Free Download

Related

Securing cloud, IIoT in Industry 4.0 emerges crucial for protecting industrial operations across OT/ICS environments
Securing cloud, IIoT in Industry 4.0 emerges crucial for protecting industrial operations across OT/ICS environments
Through the Lens of a Case Study: What It Takes to Be a Cyber-Physical Risk Analyst
Through the Lens of a Case Study: What It Takes to Be a Cyber-Physical Risk Analyst
Dragos reports decline in ransomware attacks on industrial sector amid law enforcement measures
Dragos reports decline in ransomware attacks on industrial sector amid law enforcement measures
MITRE's CREF Navigator aligns with DoD's CMMC to boost cyber resilience in defense industrial base
MITRE’s CREF Navigator aligns with DoD’s CMMC to boost cyber resilience in defense industrial base
UK’s NCSC debuts CAF v3.2 to address rising threats to critical national infrastructure, boosts cybersecurity readiness
UK’s NCSC debuts CAF v3.2 to address rising threats to critical national infrastructure, boosts cybersecurity readiness
Cisco Talos details ArcaneDoor campaign found targeting perimeter network devices across critical infrastructure
Cisco Talos details ArcaneDoor campaign found targeting perimeter network devices across critical infrastructure
Forescout report warns of growing security risks to critical infrastructure as OT/ICS exposed data escalates
Forescout report warns of growing security risks to critical infrastructure as OT/ICS exposed data escalates
ASIS Foundation reports on impact of autonomous vehicles on security and technology
ASIS Foundation reports on impact of autonomous vehicles on security and technology
European Commission makes €112 million investment in AI, quantum research under Horizon Europe program
European Commission makes €112 million investment in AI, quantum research under Horizon Europe program
MITRE unveils ATT&CK v15 with upgraded detections, analytic format, cross-domain adversary insights
MITRE unveils ATT&CK v15 with upgraded detections, analytic format, cross-domain adversary insights