Tap any paragraph to write a margin note. Your notes collect in the Desk below the text and file under cases with @. The side-by-side margin rail opens on a larger screen.

§
Marginalia
Code · BILL · 117th Congress · S. 3904 (Introduced in Senate) — To enhance the cybersecurity of the Healthcare and Public Health Sector. · Sec. 6

Sec. 6. Sector-specific study and report

440 words·~2 min read·/bill/117/s/3904/is/section-6·

A research copy — for the controlling text, always check the official state or federal source. Not legal advice.

Not later than 1 year after the date of enactment of this Act, the Director, in consultation with the Secretary, shall conduct a study and issue a report, which shall include the following elements: An analysis of how identified cybersecurity risks specifically impact Healthcare and Public Health Sector assets, including the impact on rural and small and medium-sized Healthcare and Public Health Sector assets. An evaluation of the challenges Healthcare and Public Health Sector assets face in— securing— updated information systems owned, leased, or relied upon by Healthcare and Public Health Sector assets; medical devices or equipment owned, leased, or relied upon by Healthcare and Public Health Sector assets, which shall include an analysis of the threat landscape and cybersecurity vulnerabilities of such medical devices or equipment; and sensitive patient health information and electronic health records; implementing cybersecurity protocols; and responding to data breaches or cybersecurity attacks, including the impact on patient access to care, quality of patient care, timeliness of health care delivery, and health outcomes.
An evaluation of best practices for the deployment of trained Cyber Security Advisors and Cybersecurity State Coordinators of the Agency into Healthcare and Public Health Sector assets before, during, and after data breaches or cybersecurity attacks. An assessment of relevant Healthcare and Public Health Sector cybersecurity workforce shortages, including— training, recruitment, and retention issues; and recommendations for how to address these shortages and issues, particularly at rural and small and medium-sized Healthcare and Public Health Sector assets.
An identification of cybersecurity challenges related to or brought on by the public health emergency declared by the Secretary under section 319 of the Public Health Service Act ( 42 U.S.C. 247d ) on January 27, 2020, with respect to COVID–19. An evaluation of the most accessible and timely ways for the Agency and the Department to communicate and deploy cybersecurity recommendations and tools to Healthcare and Public Health Sector assets. Not later than 60 days after completing the study and report required under subsection (a), the Director shall present the completed report to the Secretary, which the Secretary may, in consultation with the Director, consult when updating the Healthcare and Public Health Sector Specific Plan of the Secretary.
Not later than 120 days after the date of enactment of this Act, the Director, in consultation with the Secretary, as appropriate, shall provide a briefing on the status of the study and report required under subsection
(a)to— the Committee on Health, Education, Labor, and Pensions and the Committee on Homeland Security and Governmental Affairs of the Senate; and the Committee on Energy and Commerce and the Committee on Homeland Security of the House of Representatives.
Connectionstraces to 1
Traces to 1 document
Citation graph
cites case law
Sec. 6
Sector-specific study and report
U.S.C.§ 247d
Cites 1Cited by 0 across 0 sources
★   the supreme law of the land   ★
Don't Tread on Me
E Pluribus Unum — out of many, one

"If you don't know your rights, you don't have any."

Marginalia · a citizen's law index
A research desk, not legal advice. Always read the cited source before relying on a summary.
Questions or an issue? support@self-law.org
disclaimerMarginalia is a research index, not a law firm. Nothing on this site is legal, tax, or financial advice and no attorney–client relationship is formed by using it. Statutes, regulations, and case law change; summaries, search results, AI output, and member posts may be incomplete, out of date, or wrong. Any interpretation drawn from material on this site should be validated by a licensed attorney in your jurisdiction before you act on it.