Tap any paragraph to write a margin note. Your notes collect in the Desk below the text and file under cases with @. The side-by-side margin rail opens on a larger screen.

§
Marginalia
Code · STATUTE-COMPILATIONS · Homeland Security Act of 2002 · Sec. 2220B

Sec. 2220B. NATIONAL CYBER EXERCISE PROGRAM

386 words·~2 min read·/statute-compilations/comps-1143/sec-2220b

A research copy — for the controlling text, always check the official state or federal source. Not legal advice.

## SEC. 2220B NATIONAL CYBER EXERCISE PROGRAM **[**[6 U.S.C. 665h](/us/usc/t6/s665h)**]** ###
(a)Establishment of Program ####
(1)In general There is established in the Agency the National Cyber Exercise Program (referred to in this section as the “Exercise Program”) to evaluate the National Cyber Incident Response Plan, and other related plans and strategies. ####
(2)Requirements #####
(A)In general The Exercise Program shall be— ######
(i)based on current risk assessments, including credible threats, vulnerabilities, and consequences; ######
(ii)designed, to the extent practicable, to simulate the partial or complete incapacitation of a government or critical infrastructure network resulting from a cyber incident; ######
(iii)designed to provide for the systematic evaluation of cyber readiness and enhance operational understanding of the cyber incident response system and relevant information sharing agreements; and ######
(iv)designed to promptly develop after-action reports and plans that can quickly incorporate lessons learned into future operations. #####
(B)Model exercise selection The Exercise Program shall— ######
(i)include a selection of model exercises that government and private entities can readily adapt for use; and ######
(ii)aid such governments and private entities with the design, implementation, and evaluation of exercises that— ######
(I)conform to the requirements described in subparagraph (A); ######
(II)are consistent with any applicable national, State, local, or Tribal strategy or plan; and ######
(III)provide for systematic evaluation of readiness. ####
(3)Consultation In carrying out the Exercise Program, the Director may consult with appropriate representatives from Sector Risk Management Agencies, the Office of the National Cyber Director, cybersecurity research stakeholders, and Sector Coordinating Councils. ###
(b)Definitions In this section: ####
(1)State The term “State” means any State of the United States, the District of Columbia, the Commonwealth of Puerto Rico, the Northern Mariana Islands, the United States Virgin Islands, Guam, American Samoa, and any other territory or possession of the United States. ####
(2)Private entity The term “private entity” has the meaning given such term in section 102 of the Cybersecurity Information Sharing Act of 2015 (6 U.S.C. 1501). ###
(c)Rule of Construction Nothing in this section shall be construed to affect the authorities or responsibilities of the Administrator of the Federal Emergency Management Agency pursuant to section 648 of the Post-Katrina Emergency Management Reform Act of 2006 (6 U.S.C. 748).
Connectionstraces to 3
Citation graph
cites case law
Sec. 2220B
NATIONAL CYBER EXERCISE PROGRAM
U.S.C.§ 665h
U.S.C.§ 1501
U.S.C.§ 748
Cites 3Cited by 0 across 0 sources
★   the supreme law of the land   ★
Don't Tread on Me
E Pluribus Unum — out of many, one

"If you don't know your rights, you don't have any."

Marginalia · a citizen's law index
A research desk, not legal advice. Always read the cited source before relying on a summary.
Questions or an issue? support@self-law.org
disclaimerMarginalia is a research index, not a law firm. Nothing on this site is legal, tax, or financial advice and no attorney–client relationship is formed by using it. Statutes, regulations, and case law change; summaries, search results, AI output, and member posts may be incomplete, out of date, or wrong. Any interpretation drawn from material on this site should be validated by a licensed attorney in your jurisdiction before you act on it.