Sec. 1. Homeland security cybersecurity workforce
773 words·~4 min read·
/bill/113/hr/3107/eh/section-1A research copy — for the controlling text, always check the official state or federal source. Not legal advice.
Subtitle C of title II of the Homeland Security Act of 2002 ( 6 U.S.C. 141 et seq. ) is amended by adding at the end the following new section: This section may be cited as the Homeland Security Cybersecurity Boots-on-the-Ground Act . Not later than 90 days after the date of the enactment of this section, the Secretary shall develop and issue comprehensive occupation categories for individuals performing activities in furtherance of the cybersecurity mission of the Department. The Secretary shall ensure that the comprehensive occupation categories issued under paragraph
(1)are used throughout the Department and are made available to other Federal agencies. Not later than 180 days after the date of the enactment of this section and annually thereafter, the Secretary shall assess the readiness and capacity of the workforce of the Department to meet its cybersecurity mission. The assessment required under paragraph
(1)shall, at a minimum, include the following: Information where cybersecurity positions are located within the Department, specified in accordance with the cybersecurity occupation categories issued under subsection (b). Information on which cybersecurity positions are— performed by— permanent full time departmental employees, together with demographic information about such employees’ race, ethnicity, gender, disability status, and veterans status; individuals employed by independent contractors; and individuals employed by other Federal agencies, including the National Security Agency; and vacant. The number of individuals hired by the Department pursuant to the authority granted to the Secretary in 2009 to permit the Secretary to fill 1,000 cybersecurity positions across the Department over a three year period, and information on what challenges, if any, were encountered with respect to the implementation of such authority. Information on vacancies within the Department’s cybersecurity supervisory workforce, from first line supervisory positions through senior departmental cybersecurity positions. Information on the percentage of individuals within each cybersecurity occupation category who received essential training to perform their jobs, and in cases in which such training is not received, information on what challenges, if any, were encountered with respect to the provision of such training. Information on recruiting costs incurred with respect to efforts to fill cybersecurity positions across the Department in a manner that allows for tracking of overall recruiting and identifying areas for better coordination and leveraging of resources within the Department. Not later than 180 days after the date of the enactment of this section, the Secretary shall develop, maintain, and, as necessary, update, a comprehensive workforce strategy that enhances the readiness, capacity, training, recruitment, and retention of the cybersecurity workforce of the Department. The comprehensive workforce strategy developed under paragraph
(1)shall include— a multiphased recruitment plan, including relating to experienced professionals, members of disadvantaged or underserved communities, the unemployed, and veterans; a 5-year implementation plan; a 10-year projection of the Department’s cybersecurity workforce needs; and obstacles impeding the hiring and development of a cybersecurity workforce at the Department. Not later than 270 days after the date of the enactment of this section, the Secretary shall establish and maintain a process to verify on an ongoing basis that individuals employed by independent contractors who serve in cybersecurity positions at the Department receive initial and recurrent information security training comprised of general security awareness training necessary to perform their job functions, and role-based security training that is commensurate with assigned responsibilities. The Secretary shall maintain documentation to ensure that training provided to an individual under this subsection meets or exceeds requirements for such individual’s job function. The Secretary shall submit to the appropriate congressional committees annual updates regarding the cybersecurity workforce assessment required under subsection (c), information on the progress of carrying out the comprehensive workforce strategy developed under subsection (d), and information on the status of the implementation of the information security training required under subsection (e). The Secretary shall provide the Comptroller General of the United States with information on the cybersecurity workforce assessment required under subsection
(c)and progress on carrying out the comprehensive workforce strategy developed under subsection (d). The Comptroller General shall submit to the Secretary and the appropriate congressional committees a study on such assessment and strategy. Not later than 120 days after the date of the enactment of this section, the Secretary shall submit to the appropriate congressional committees a report on the feasibility of establishing a Cybersecurity Fellowship Program to offer a tuition payment plan for undergraduate and doctoral candidates who agree to work for the Department for an agreed-upon period of time. . The table of contents in section 1(b) of such Act is amended by adding after the item relating to section 225 the following new item: Sec. 226. Cybersecurity occupation categories, workforce assessment, and strategy. .
Connectionstraces to 1
Traces to 1 document
Citation graph
cites case law
Sec. 1
Homeland security cybersecurity workforce
Cites 1Cited by 0 across 0 sources