Bill Sponsor
Senate Bill 3600
117th Congress(2021-2022)
Strengthening American Cybersecurity Act of 2022
Active
Amendments
Active
Passed Senate on Mar 1, 2022
Overview
Text
Introduced
Feb 8, 2022
Latest Action
Mar 2, 2022
Origin Chamber
Senate
Type
Bill
Bill
The primary form of legislative measure used to propose law. Depending on the chamber of origin, bills begin with a designation of either H.R. or S. Joint resolution is another form of legislative measure used to propose law.
Bill Number
3600
Congress
117
Policy Area
Government Operations and Politics
Government Operations and Politics
Primary focus of measure is government administration, including agency organization, contracting, facilities and property, information management and services; rulemaking and administrative law; elections and political activities; government employees and officials; Presidents; ethics and public participation; postal service. Measures concerning agency appropriations and the budget process may fall under Economics and Public Finance policy area.
Sponsorship by Party
Democrat
Michigan
Democrat
California
Democrat
Georgia
Republican
Missouri
Republican
North Carolina
Democrat
Pennsylvania
Democrat
Virginia
Senate Votes (1)
House Votes (0)
checkPassed on March 1, 2022
Status
Passed
Type
Unanimous Consent
Unanimous Consent
A senator may request unanimous consent on the floor to set aside a specified rule of procedure so as to expedite proceedings. If no Senator objects, the Senate permits the action, but if any one senator objects, the request is rejected. Unanimous consent requests with only immediate effects are routinely granted, but ones affecting the floor schedule, the conditions of considering a bill or other business, or the rights of other senators, are normally not offered, or a floor leader will object to it, until all senators concerned have had an opportunity to inform the leaders that they find it acceptable.
Passed/agreed to in Senate: Passed Senate with amendments by Unanimous Consent.
Summary

Strengthening American Cybersecurity Act of 2022

This bill addresses cybersecurity threats against critical infrastructure and the federal government.

The Cybersecurity and Infrastructure Security Agency (CISA) must perform ongoing and continuous assessments of federal risk posture.

An agency, within a specified time frame, must (1) determine whether notice to any individual potentially affected by a breach is appropriate based on a risk assessment; and (2) as appropriate, provide written notice to each individual potentially affected.

Each agency must (1) provide information relating to a major incident to specified parties, and (2) develop specified training for individuals with access to federal information or information systems.

The bill requires reporting and other actions to address cybersecurity incidents.

Entities that own or operate critical infrastructure must report cyber incidents and ransom payments within specified time frames.

The bill limits the use and disclosure of reported information.

The bill establishes (1) an interagency council to standardize federal reporting of cybersecurity threats, (2) a task force on ransomware attacks, and (3) a pilot program to identify information systems vulnerable to such attacks.

The bill provides statutory authority for the Federal Risk and Authorization Management Program (FedRAMP) within the General Services Administration (GSA).

FedRAMP is a government-wide program that provides a standardized approach to security assessment, authorization, and continuous monitoring for cloud computing products and services.

The bill establishes a FedRAMP Board to examine the operations of FedRAMP and the Federal Secure Cloud Advisory Committee.

Text (2)
Amendments (2)
Mar 01, 2022
Agreed to in Senate
1
Sponsorship
Senate Amendment 4954
To improve the bill.
Agreed To
Mar 01, 2022
Agreed to in Senate
2
Sponsorship
Senate Amendment 4953
To amend the Federal Cybersecurity Enhancement Act of 2015 to require Federal agencies to obtain exemptions from certain cybersecurity requirements in order to avoid compliance with those requirements.
Agreed To
Actions (9)
03/02/2022
Held at the desk.
03/02/2022
Received in the House.
03/02/2022
Message on Senate action sent to the House.
03/01/2022
Passed Senate with amendments by Unanimous Consent. (text: CR S897-919)
03/01/2022
Passed/agreed to in Senate: Passed Senate with amendments by Unanimous Consent.
03/01/2022
Measure laid before Senate by unanimous consent. (consideration: CR S896-919)
02/09/2022
Read the second time. Placed on Senate Legislative Calendar under General Orders. Calendar No. 265.
02/08/2022
Introduced in the Senate. Read the first time. Placed on Senate Legislative Calendar under Read the First Time.
02/08/2022
Introduced in Senate
Public Record
Record Updated
May 11, 2023 3:46:24 PM