On Tuesday, October 6, 2015, the House will consider H.R. 3510, the Department of Homeland Security Cybersecurity Strategy Act of 2015, as amended, under suspension of the rules. H.R. 3510 was introduced on September 15, 2015 by Rep. Cedric Richmond (D-LA) and was referred to the Committee on Homeland Security, which ordered the bill reported by voice vote on September 30, 2015.
H.R. 3510 requires the Secretary of the Department of Homeland Security (DHS) to develop a departmental cybersecurity strategy to carry out the Department’s cybersecurity responsibilities as required by law. The required strategy must outline the strategic and operational goals and priorities necessary to fulfill the department’s cybersecurity mission.
The bill also requires the Secretary to issue an implementation plan for the cybersecurity strategy, which must include strategic objectives and corresponding tasks, projected timelines and costs for those tasks, and metrics to evaluate the performance of such tasks.
The bill prohibits reorganization of any office or component of the National Protection and Programs Directorate (DHS’ cybersecurity and infrastructure protection missions) without prior congressional authorization.
Cyber-attacks stand to disrupt the operations of government, businesses, and the lives of the American people. Increasingly sophisticated cyber threats have underscored the need to manage and strengthen the cybersecurity of the nation’s critical infrastructure. The Government Accountability Office (GAO) recommended that an overarching federal cybersecurity strategy be implemented and that such strategy should define key elements of a national strategy including roles and responsibilities. H.R. 3510 ensures DHS develops such a strategy.
The Department of Homeland Security is currently planning a potential reorganization of the National Protection and Programs Directorate (NPPD), however, few details have been provided to Congress about the proposal. Due to the lack of transparency and detail regarding the way in which the Department plans to reorganize in order to carry out its cybersecurity and infrastructure protection missions, H.R. 3510 prohibits NPPD from changing the location or structure of any of its offices or components without Congressional authorization.
For questions or further information please contact Jerry White with the House Republican Policy Committee by email or at 5-0190.