Tap any paragraph to write a margin note. Your notes collect in the Desk below the text and file under cases with @. The side-by-side margin rail opens on a larger screen.

§
Marginalia
Code · BILL · 115th Congress · H.R. 302 (Enrolled) — To provide protections for certain sports medicine professionals, to reauthorize Federal aviation programs, to improv... · Sec. 1989

Sec. 1989. Information sharing and cybersecurity

634 words·~3 min read·/bill/115/hr/302/enr/section-1989·

A research copy — for the controlling text, always check the official state or federal source. Not legal advice.

Section 44933 is amended by adding at the end the following: Not later than 1 year after the date of the enactment of the TSA Modernization Act , the Administrator shall— require each Federal Security Director of an airport to meet at least quarterly with the airport director, airport security coordinator, and law enforcement agencies serving each such airport to discuss incident management protocols, including the resolution of screening anomalies at passenger screening checkpoints; and require each Federal Security Director at an airport to inform, consult, and coordinate, as appropriate, with the respective airport security coordinator in a timely manner on security matters impacting airport operations and to establish and maintain operational protocols with such airport operators to ensure coordinated responses to security matters. .
Not later than 180 days after the date of enactment of this Act, the Administrator shall develop a plan to improve intelligence information sharing with State and local transportation entities that includes best practices to ensure that the information shared is actionable, useful, and not redundant. The plan required under paragraph
(1)shall include the following: The incorporation of best practices for information sharing. The identification of areas of overlap and redundancy. An evaluation and incorporation of stakeholder input in the development of such plan. The integration of any recommendations of the Comptroller General of the United States on information sharing. The Administrator shall solicit on an annual basis input from appropriate stakeholders, including State and local transportation entities, on the quality and quantity of intelligence received by such stakeholders relating to information sharing. Not later than 180 days after the date of enactment of this Act, the Administrator shall establish a mechanism to share with State and local transportation entities best practices from across the law enforcement spectrum, including Federal, State, local, and tribal entities, that relate to employee training, employee professional development, technology development and deployment, hardening tactics, and passenger and employee awareness programs. The Administrator shall solicit and incorporate stakeholder input— in developing the mechanism for sharing best practices as required under paragraph (1); and not less frequently than annually on the quality and quantity of information such stakeholders receive through the mechanism established under such paragraph. The Administrator, in consultation with the Secretary, shall— not later than 120 days after the date of enactment of this Act, implement the Framework for Improving Critical Infrastructure Cybersecurity (referred to in this section as the Framework developed by the National Institute of Standards and Technology, and any update to such Framework under section 2 of the National Institute of Standards and Technology Act ( 15 U.S.C. 272 ), to manage the agency’s cybersecurity risks; and evaluate, on a periodic basis, but not less often than biennially, the use of the Framework under subparagraph (A). The Secretary, in consultation with the Secretary of Transportation, shall, upon request, conduct cybersecurity vulnerability assessments for airports and air carriers. Not later than 120 days after the date of enactment of this Act, the Secretary shall— evaluate the cybersecurity of TSA trusted traveler and credentialing programs that contain personal information of specific individuals or information that identifies specific individuals, including the Transportation Worker Identification Credential and PreCheck programs; identify any cybersecurity risks under the programs described in clause (i); and develop remediation plans to address the cybersecurity risks identified under clause (ii). Not later than 30 days after the date the evaluation under subparagraph
(A)is complete, the Secretary shall submit to the appropriate committees of Congress information relating to such evaluation, including any cybersecurity vulnerabilities identified and remediation plans to address such vulnerabilities. Such submission shall be provided in a classified form. In this subsection, the terms cybersecurity risk and incident have the meanings given the terms in section 227 of the Homeland Security Act of 2002 ( 6 U.S.C. 148 ).
Connectionstraces to 1
1 reference not yet in our index
  • 6 USC 148
Citation graph
cites case law
Sec. 1989
Information sharing and cybersecurity
U.S.C.§ 272
Cite6 USC 148
Cites 2Cited by 0 across 0 sources
★   the supreme law of the land   ★
Don't Tread on Me
E Pluribus Unum — out of many, one

"If you don't know your rights, you don't have any."

Marginalia · a citizen's law index
A research desk, not legal advice. Always read the cited source before relying on a summary.
Questions or an issue? support@self-law.org
disclaimerMarginalia is a research index, not a law firm. Nothing on this site is legal, tax, or financial advice and no attorney–client relationship is formed by using it. Statutes, regulations, and case law change; summaries, search results, AI output, and member posts may be incomplete, out of date, or wrong. Any interpretation drawn from material on this site should be validated by a licensed attorney in your jurisdiction before you act on it.