Tap any paragraph to write a margin note. Your notes collect in the Desk below the text and file under cases with @. The side-by-side margin rail opens on a larger screen.

§
Marginalia
Code · BILL · 117th Congress · H.R. 6169 (Introduced in House) — To direct the Secretary of Defense to establish a framework relating to risks to the defense supply chain, and for ot... · Sec. 1

Sec. 1. Defense supply chain risk assessment framework

696 words·~3 min read·/bill/117/hr/6169/ih/section-1

A research copy — for the controlling text, always check the official state or federal source. Not legal advice.

Not later than one year after the date of the enactment of this Act, the Secretary of Defense shall establish a framework, which may be included as part of a framework developed under section 2509 of title 10, United States Code, and pursuant to recommendations provided under section 5 of Executive Order 14017 (86 Fed. Reg. 11849, relating to America’s supply chains), to consolidate the information relating to risks to the defense supply chain that is collected by the elements of the Department of Defense to— enable Department-wide risk assessments of the defense supply chain; and support the development of strategies to mitigate risks to the defense supply chain.
The framework established under subsection
(a)shall— provide for the collection, management, and storage of data from the supply chain risk management processes of the Department of Defense; provide for the collection of reports on supply chain risk management from the military departments and Defense Agencies, and the dissemination of such reports to the components of the military departments and Defense Agencies involved in the management of supply chain risk; enable all elements of the Department to analyze the information collected by such framework to identify risks to the defense supply chain; enable the Department to— assess the capabilities of foreign adversaries (as defined in section 8(c) of the Secure and Trusted Communications Networks Act of 2019 ( 47 U.S.C. 1607(c) )) to affect the defense supply chain; analyze the ability of the industrial base of the United States to meet the needs of the defense supply chain; track global technology trends that could affect the defense supply chain, as determined by the Secretary of Defense; and assess the risks posed by emerging threats to the defense supply chain; support the identification of technology in which the Department may invest to reduce risks to the defense supply chain, including by improving the resilience of the defense supply; and provide for— a map of the supply chains for major end items that supports analysis, monitoring, and reporting with respect to high-risk subcontractors and risks to such supply chain; and the use of a covered application described in subsection
(c)in the creation of such map to assess risks to the supply chain for major end items by business sector, vendor, program, part, or technology. The covered application described in this subsection is a covered application that includes the following elements: A centralized database that consolidates multiple disparate data sources into a single repository to ensure the consistent availability of data. Centralized reporting to allow for efficient mitigation and remediation of identified supply chain vulnerabilities. Broad interoperability with other software and systems to ensure support for the analytical capabilities of users across the Department. Scalable technology to support multiple users, access controls for security, and functionality designed for information-sharing and collaboration. Not later than 180 days after the framework required under subsection
(a)is established, and regularly thereafter, the Secretary of Defense shall issue guidance on mitigating risks to the defense supply chain. Not later than 180 days after the date of the enactment of this Act, the Secretary of Defense shall submit to the congressional defense committees a report on the progress of establishing the framework as required under subsection (a). Not later than one year after the date of the enactment of this Act, the Secretary of Defense shall submit to the congressional defense committees a report describing the framework established under subsection
(a)and the organizational structure to manage and oversee the framework. In this section: The term covered application means a software-as-a-service application that uses decision science, commercial data, and machine learning techniques. The terms Defense Agency and military department have the meanings given such terms in section 101 of title 10, United States Code. The term high-risk subcontractor means a subcontractor at any tier that supplies major end items for the Department of Defense. The term major end item means an item subject to a unique item-level traceability requirement at any time in the life cycle of such item under Department of Defense Instruction 8320.04, titled Item Unique Identification
(IUID)Standards for Tangible Personal Property and dated September 3, 2015, or any successor instruction.
Connectionstraces to 2
1 reference not yet in our index
  • 86 FR 11849
Citation graph
cites case law
Sec. 1
Defense supply chain risk assessment framework
Fed. Reg.Notices
U.S.C.§ 1607
Fed. Reg.86 FR 11849
Cites 3Cited by 0 across 0 sources
★   the supreme law of the land   ★
Don't Tread on Me
E Pluribus Unum — out of many, one

"If you don't know your rights, you don't have any."

Marginalia · a citizen's law index
A research desk, not legal advice. Always read the cited source before relying on a summary.
Questions or an issue? support@self-law.org
disclaimerMarginalia is a research index, not a law firm. Nothing on this site is legal, tax, or financial advice and no attorney–client relationship is formed by using it. Statutes, regulations, and case law change; summaries, search results, AI output, and member posts may be incomplete, out of date, or wrong. Any interpretation drawn from material on this site should be validated by a licensed attorney in your jurisdiction before you act on it.