Sec. 1399E. Cooperation with allies and partners in Middle East on development of integrated regional cybersecurity architecture
510 words·~2 min read·
/bill/118/s/2226/es/section-1399eA research copy — for the controlling text, always check the official state or federal source. Not legal advice.
The Secretary of Defense, using existing authorities and in consultation with the head of any other Federal agency, as appropriate, shall seek to cooperate with allies and partners in the Middle East with respect to developing an integrated regional cybersecurity architecture and deepening military cybersecurity partnerships to defend military networks, infrastructure, and systems against hostile cyber activity. Any activity carried out under paragraph (1)shall be conducted in a manner that— is consistent with the protection of intelligence sources and methods; and appropriately protects sensitive information and the national security interests of the United States.
Not later than 180 days after the date of the enactment of this Act, the Secretary of Defense, in consultation with the Secretary of State, shall submit to the appropriate committees of Congress a strategy for cooperation with allies and partners in the Middle East to develop an integrated regional cybersecurity architecture to defend military networks, infrastructure, and systems against hostile cyber activity. The strategy submitted under paragraph
(1)shall include the following: An assessment of the threat landscape of cyberattacks, military networks, infrastructure, and systems against allies and partners within the Middle East. A description of current efforts to share, between the United States and allies and partners within the Middle East, indicators and warnings, tactics, techniques, procedures, threat signatures, planning efforts, training, and other similar information about cyber threats. An analysis of current bilateral and multilateral defense protocols protecting military networks, infrastructure, and systems and sharing sensitive cyber threat information between the United States and allies and partners in the Middle East. An assessment of whether a multinational integrated military cybersecurity partnership, including establishing a center in the Middle East to facilitate such activities, would improve collective security in the Middle East. An assessment of gaps in ally and partner capabilities that would have to be remedied in order to establish such a center. A description of any prior or ongoing effort to engage allies and partners in the Middle East in establishing— a multinational integrated cybersecurity partnership or other bilateral or multilateral defensive cybersecurity information sharing and training partnership; or other cooperative defensive cybersecurity measures. An identification of elements of a potential multinational military cybersecurity partnership, or other bilateral or multilateral defensive cybersecurity measures, that— can be acquired and operated by specified foreign partners within the area of responsibility of the United States Central Command; can only be provided and operated by the United States; and can be provided by a third party entity contracted by the United States Central Command jointly with specified foreign partners. Any other matter the Secretary of Defense considers relevant. The strategy required by paragraph
(1)shall be submitted in unclassified form but may include a classified annex. In this section, the term appropriate committees of Congress means— the Committee on Armed Services, the Committee on Appropriations, the Committee on Foreign Relations, and the Select Committee on Intelligence of the Senate; and the Committee on Armed Services, the Committee on Appropriations, the Committee on Foreign Affairs, and the Permanent Select Committee on Intelligence of the House of Representatives.