Tap any paragraph to write a margin note. Your notes collect in the Desk below the text and file under cases with @. The side-by-side margin rail opens on a larger screen.

§
Marginalia
Code · BILL · 116th Congress · S. 4049 (Reported in Senate) — To authorize appropriations for fiscal year 2021 for military activities of the Department of Defense, for military c... · Sec. 1632

Sec. 1632. Assessment on defense industrial base cybersecurity threat hunting

279 words·~1 min read·/bill/116/s/4049/rs/section-1632·

A research copy — for the controlling text, always check the official state or federal source. Not legal advice.

Not later than December 1, 2021, the Secretary of Defense shall complete an assessment of— the adequacy of the threat hunting elements of the compliance-based Cybersecurity Maturity Model Certification program of the Department of Defense; and the need for continuous threat hunting operations on defense industrial base networks conducted by the Department of Defense, prime contractors, or third-party cybersecurity vendors. The assessment completed under section
(a)shall include evaluation of the following: The adequacy of the requirements at each level of the Cybersecurity Maturity Model Certification, including requirements germane to continuous monitoring, discovery, and investigation of anomalous activity indicative of a cybersecurity incident. The need for the establishment of a continuous threat-hunting operational model, as a supplement to the cyber hygiene requirements of the Cybersecurity Maturity Model Certification, in which network activity is comprehensively and continuously monitored for signs of compromise. Whether the continuous threat-hunting operations described in paragraph
(2)should be conducted by— United States Cyber Command; a component of the Department of Defense other than United States Cyber Command; qualified prime contractors or subcontractors; accredited third-party cybersecurity vendors; or a combination of the entities specified in subparagraphs
(A)through (D). Criteria for the prime contractors and subcontractors that should be subject to continuous threat-hunting operations as described in paragraph (2). Not later than February 1, 2022, the Secretary of Defense shall provide a briefing to the Committee on Armed Services of the Senate and the Committee on Armed Services of the House of Representatives on— the findings of the Secretary with respect to the assessment completed under subsection (a); and such implementation plans as the Secretary may have arising out of the findings described in paragraph (1).
★   the supreme law of the land   ★
Don't Tread on Me
E Pluribus Unum — out of many, one

"If you don't know your rights, you don't have any."

Marginalia · a citizen's law index
A research desk, not legal advice. Always read the cited source before relying on a summary.
Questions or an issue? support@self-law.org
disclaimerMarginalia is a research index, not a law firm. Nothing on this site is legal, tax, or financial advice and no attorney–client relationship is formed by using it. Statutes, regulations, and case law change; summaries, search results, AI output, and member posts may be incomplete, out of date, or wrong. Any interpretation drawn from material on this site should be validated by a licensed attorney in your jurisdiction before you act on it.