Sec. 17. Security operations center shared service
225 words·~1 min read·
/bill/118/s/2251/is/section-17A research copy — for the controlling text, always check the official state or federal source. Not legal advice.
Not later than 180 days after the date of enactment of this Act, the Director of the Cybersecurity and Infrastructure Security Agency shall provide to the Committee on Homeland Security and Governmental Affairs of the Senate and the Committee on Homeland Security and the Committee on Oversight and Accountability of the House of Representatives a briefing on— existing security operations center shared services; the capability for such shared service to offer centralized and simultaneous support to multiple agencies; the capability for such shared service to integrate with or support agency threat hunting activities authorized under section 3553 of title 44, United States Code, as amended by this Act; the capability for such shared service to integrate with or support Federal vulnerability management activities; and future plans for expansion and maturation of such shared service.
Not less than 540 days after the date of enactment of this Act, the Comptroller General of the United States shall submit to the appropriate congressional committees a report on Federal cybersecurity security operations centers that— identifies Federal agency best practices for efficiency and effectiveness; identifies non-Federal best practices used by large entity operations centers and entities providing operation centers as a service; and includes recommendations for the Cybersecurity and Infrastructure Security Agency and any other relevant agency to improve the efficiency and effectiveness of security operations centers shared service offerings.