Tap any paragraph to write a margin note. Your notes collect in the Desk below the text and file under cases with @. The side-by-side margin rail opens on a larger screen.

§
Marginalia
Code · BILL · 116th Congress · S. 772 (Introduced in Senate) — To require an annual report on the cybersecurity of the Small Business Administration, and for other purposes. · Sec. 2

Sec. 2. Cybersecurity awareness reporting

416 words·~2 min read·/bill/116/s/772/is/section-2

A research copy — for the controlling text, always check the official state or federal source. Not legal advice.

Section 10 of the Small Business Act ( 15 U.S.C. 639 ) is amended by striking subsection
(b)and inserting the following: In this subsection, the term appropriate congressional committees means— the Committee on Small Business and Entrepreneurship of the Senate; and the Committee on Small Business of the House of Representatives. Not later than 180 days after the date of enactment of the SBA Cyber Awareness Act , and every year thereafter, the Administration shall submit a report to the appropriate congressional committees that includes— an assessment of the information technology and cybersecurity of the Administration; a strategy to increase the cybersecurity of the Administration; a detailed account of any information technology component or system of the Administration that was manufactured by a company located in the People's Republic of China; and an account of any cyber threat, breach, or cyber attack that occurred at the Administration during the 2-year period preceding the date on which the report is submitted, and any action taken by the Administration to respond to or remediate the cyber threat, breach, or cyber attack. If the Administration determines that there is a reasonable basis to conclude that a cyber threat, breach, or cyber attack occurred at the Administration, the Administration shall— not later than 7 days after the date on which the Administration makes that determination, notify the appropriate congressional committees of the cyber threat, breach, or cyber attack; and not later than 30 days after the date on which the Administration makes that determination, submit to the appropriate congressional committees a report that includes— a summary of information about the cyber threat, breach, or cyber attack, including how the cyber threat, breach, or cyber attack occurred, based on information available to the Administration as of the date which the Administration submits the report; an estimate of the number of individuals and small entities affected by the cyber threat, breach, or cyber attack, including an assessment of the risk of harm to affected individuals and small entities based on information available to the Administration as of the date on which the Administration submits the report; and an estimate of when the Administration will provide notice to affected individuals and small entities. Nothing in this subsection shall be construed to affect the reporting requirements of the Administration under chapter 35 of title 44 United States Code, in particular the requirement to notify the Federal information security incident center under section 3554(b)(7)(C)(ii) of such title, or any other provision of law. .
Connectionstraces to 1
Citation graph
cites case law
Sec. 2
Cybersecurity awareness reporting
U.S.C.§ 639
Cites 1Cited by 0 across 0 sources
★   the supreme law of the land   ★
Don't Tread on Me
E Pluribus Unum — out of many, one

"If you don't know your rights, you don't have any."

Marginalia · a citizen's law index
A research desk, not legal advice. Always read the cited source before relying on a summary.
Questions or an issue? support@self-law.org
disclaimerMarginalia is a research index, not a law firm. Nothing on this site is legal, tax, or financial advice and no attorney–client relationship is formed by using it. Statutes, regulations, and case law change; summaries, search results, AI output, and member posts may be incomplete, out of date, or wrong. Any interpretation drawn from material on this site should be validated by a licensed attorney in your jurisdiction before you act on it.