Tap any paragraph to write a margin note. Your notes collect in the Desk below the text and file under cases with @. The side-by-side margin rail opens on a larger screen.

§
Marginalia
Code · BILL · 116th Congress · H.R. 8309 (Introduced in House) — To authorize certain authorities of the Department of Homeland Security, and for other purposes. · Sec. 306

Sec. 306. State, local, Tribal, and territorial cybersecurity

866 words·~4 min read·/bill/116/hr/8309/ih/section-306

A research copy — for the controlling text, always check the official state or federal source. Not legal advice.

Subtitle A of title XXII of the Homeland Security Act of 2002 ( 6 U.S.C. 651 et seq.), as amended by this title, is further amended by adding at the end the following new sections: The Secretary, acting through the Director, shall develop a resource guide for use by State, local, and Tribal officials, including law enforcement officers, to help such officials prepare for, protect against, respond to, recover from, and mitigate against cyber attacks. The Director shall establish a State, local, Tribal, and territorial government cybersecurity initiative to make grants to State, local, Tribal, and territorial governments to prepare for, protect against, respond to, recover from, and mitigate against cyber attacks.
Each State, local, Tribal, and territorial government may apply for a grant under this section, and shall submit such information in support of an application relating thereto as the Director may require. An application under this subsection shall include the following: A description of how the State, local, Tribal, or territorial government plans to allocate grant funds. A budget showing how the State, local, Tribal, or territorial government intends to expend grant funds. Grants under this section shall be for one year, and a State, local, Tribal, or territorial government may apply or reapply on an annual basis.
To be eligible to receive a grant under this section, a State, local, Tribal, or territorial government shall agree to contribute, from State or local government appropriated funds, other State or local government revenue, or from private contributions received by the State or local government, not less than 20 percent of the amount of the grant. There is authorized to be appropriated $50,000,000 for each of fiscal years 2020 through 2024 and such sums as may be necessary for each fiscal year thereafter to carry out this section. .
The table of contents in section 1(b) of the Homeland Security Act of 2002 is amended by inserting after the item relating to section 2215, as added by this title, the following new items: Sec. 2216. Cybersecurity resource guide development for State, local, Tribal, and territorial government officials. Sec. 2217. State, local, Tribal, and territorial cybersecurity grants. . Subtitle A of title XXII of the Homeland Security Act of 2002 (6 U.S.C 652 et seq.), as amended by this title, is further amended— in section 2201 ( 6 U.S.C. 651 )— by redesignating paragraphs (4), (5), and
(6)as paragraphs (5), (6), and (7), respectively; and by inserting after paragraph
(3)the new following paragraph: The term entity shall include— an association, corporation, whether for-profit or nonprofit, partnership, proprietorship, organization, institution, establishment, or individual, whether domestic or foreign; a government agency or other governmental entity, whether domestic or foreign, including State, local, Tribal, and territorial government entities; and the general public. ; and in section 2209 ( 6 U.S.C. 659 ), by adding at the end the following new subsection: The Director shall, to the extent practicable, and in coordination as appropriate with Federal and non-Federal entities, such as the Multi-State Information Sharing and Analysis Center— conduct exercises with Federal and non-Federal entities; provide operational and technical cybersecurity training related to cyber threat indicators, defensive measures, cybersecurity risks, and incidents to Federal and non-Federal entities to address cybersecurity risks or incidents, with or without reimbursement; assist Federal and non-Federal entities, upon request, in sharing cyber threat indicators, defensive measures, cybersecurity risks, and incidents from and to the Federal Government as well as among Federal and non-Federal entities, in order to increase situational awareness and help prevent incidents; provide Federal and non-Federal entities timely notifications containing specific incident and malware information that may affect such entities or individuals with respect to whom such entities have a relationship; provide and periodically update via a web portal and other means tools, products, resources, policies, guidelines, controls, procedures and other cybersecurity standards and best practices and procedures related to information security; work with senior Federal and non-Federal officials, including State and local Chief Information Officers, senior election officials, and through national associations, to coordinate a nationwide effort to ensure effective implementation of tools, products, resources, policies, guidelines, controls, procedures, and other cybersecurity standards and best practices and procedures related to information security to secure and ensure the resiliency of Federal and non-Federal information systems and including election systems; provide, upon request, operational and technical assistance to Federal and non-Federal entities to implement tools, products, resources, policies, guidelines, controls, procedures, and other cybersecurity standards and best practices related to information security, including by, as appropriate, deploying and sustaining cybersecurity technologies, such as an intrusion detection capability, to assist such Federal and non-Federal entities in detecting cybersecurity risks and incidents; assist Federal and non-Federal entities in developing policies and procedures for coordinating vulnerability disclosures, to the extent practicable, consistent with international and national standards in the information technology industry; ensure that Federal and non-Federal entities, as appropriate, are made aware of the tools, products, resources, policies, guidelines, controls, procedures, and other cybersecurity standards and best practices related to information security developed by the Department and other appropriate Federal entities for ensuring the security and resiliency of civilian information systems; and promote cybersecurity education and awareness through engagements with Federal and non-Federal entities. .
Connectionstraces to 3
Citation graph
cites case law
Sec. 306
State, local, Tribal, and territorial cybersecurity
U.S.C.§ 651
U.S.C.§ 652
U.S.C.§ 659
Cites 3Cited by 0 across 0 sources
★   the supreme law of the land   ★
Don't Tread on Me
E Pluribus Unum — out of many, one

"If you don't know your rights, you don't have any."

Marginalia · a citizen's law index
A research desk, not legal advice. Always read the cited source before relying on a summary.
Questions or an issue? support@self-law.org
disclaimerMarginalia is a research index, not a law firm. Nothing on this site is legal, tax, or financial advice and no attorney–client relationship is formed by using it. Statutes, regulations, and case law change; summaries, search results, AI output, and member posts may be incomplete, out of date, or wrong. Any interpretation drawn from material on this site should be validated by a licensed attorney in your jurisdiction before you act on it.