Tap any paragraph to write a margin note. Your notes collect in the Desk below the text and file under cases with @. The side-by-side margin rail opens on a larger screen.

§
Marginalia
Code · BILL · 117th Congress · H.R. 6497 (Introduced in House) — To modernize Federal information security management and improve Federal cybersecurity to combat persisting and emerg... · Sec. 303

Sec. 303. Security operations center as a service pilot

327 words·~1 min read·/bill/117/hr/6497/ih/section-303

A research copy — for the controlling text, always check the official state or federal source. Not legal advice.

The purpose of this section is for the Director of the Cybersecurity and Infrastructure Security Agency to run a security operation center on behalf of the head of another agency, alleviating the need to duplicate this function at every agency, and empowering a greater centralized cybersecurity capability. Not later than 1 year after the date of the enactment of this Act, the Director of the Cybersecurity and Infrastructure Security Agency shall develop a plan to establish a centralized Federal security operations center shared service offering within the Cybersecurity and Infrastructure Security Agency. The plan required under subsection
(b)shall include considerations for— collecting, organizing, and analyzing agency information system data in real time; staffing and resources; and appropriate interagency agreements, concepts of operations, and governance plans. Not later than 180 days after the date on which the plan required under subsection
(b)is developed, the Director of the Cybersecurity and Infrastructure Security Agency, in consultation with the Director of the Office of Management and Budget, shall enter into a 1-year agreement with not less than 2 agencies to offer a security operations center as a shared service. After the date on which the briefing required under subsection (e)(1) is provided, the Director of the Cybersecurity and Infrastructure Security Agency, in consultation with the Director of the Office of Management and Budget, may enter into additional 1-year agreements described in paragraph
(1)with agencies. Not later than 270 days after the date of the enactment of this Act, the Director of the Cybersecurity and Infrastructure Security Agency shall provide to appropriate congressional committees a briefing on the parameters of any 1-year agreements entered into under subsection (d)(1). Not later than 90 days after the date on which the first 1-year agreement entered into under subsection
(d)expires, the Director of the Cybersecurity and Infrastructure Security Agency shall submit to appropriate congressional committees a report on— the agreement; and any additional agreements entered into with agencies under subsection (d).
★   the supreme law of the land   ★
Don't Tread on Me
E Pluribus Unum — out of many, one

"If you don't know your rights, you don't have any."

Marginalia · a citizen's law index
A research desk, not legal advice. Always read the cited source before relying on a summary.
Questions or an issue? support@self-law.org
disclaimerMarginalia is a research index, not a law firm. Nothing on this site is legal, tax, or financial advice and no attorney–client relationship is formed by using it. Statutes, regulations, and case law change; summaries, search results, AI output, and member posts may be incomplete, out of date, or wrong. Any interpretation drawn from material on this site should be validated by a licensed attorney in your jurisdiction before you act on it.