Tap any paragraph to write a margin note. Your notes collect in the Desk below the text and file under cases with @. The side-by-side margin rail opens on a larger screen.

§
Marginalia
Code · STATUTE-COMPILATIONS · FAA Reauthorization Act of 2018 · Sec. 1805

Sec. 1805. CYBERSECURITY INFORMATION SHARING AND COORDINATION IN PORTS

918 words·~4 min read·/statute-compilations/comps-15561/sec-1805

A research copy — for the controlling text, always check the official state or federal source. Not legal advice.

## SEC. 1805 CYBERSECURITY INFORMATION SHARING AND COORDINATION IN PORTS ###
(a)Maritime Cybersecurity Risk Assessment Model **[**[46 U.S.C. 70112 note](/us/usc/t46/s70112)**]** The Secretary of Homeland Security, through the Commandant of the Coast Guard and the Under Secretary responsible for overseeing the critical infrastructure protection, cybersecurity, and other related programs of the Department of Homeland Security, shall— ####
(1)not later than 1 year after the date of enactment of this Act, coordinate with the National Maritime Security Advisory Committee, the Area Maritime Security Advisory Committees, and other maritime stakeholders, as necessary, to develop and implement a maritime cybersecurity risk assessment model, consistent with the activities described in section 2(e) of the National Institute of Standards and Technology Act (15 U.S.C. 272(e)), to evaluate current and future cybersecurity risks that have the potential to affect the marine transportation system or that would cause a transportation security incident (as defined in section 70101 of title 46, United States Code) in ports; and ####
(2)not less than biennially thereafter, evaluate the effectiveness of the cybersecurity risk assessment model established under paragraph (1). ###
(b)Port Security; Definitions Section 70101 of title 46, United States Code, is amended— ####
(1)by redesignating paragraphs
(2)through
(6)as paragraphs
(3)through (7), respectively; and ####
(2)by inserting after paragraph
(1)the following: > > #### “(2) > > The term ‘cybersecurity risk’ has the meaning given the term in section 227 of the Homeland Security Act of 2002 (6 U.S.C. 148).” > . ###
(c)National Maritime Security Advisory Committee ####
(1)Functions Section 70112(a)(1)(A) of title 46, United States Code, is amended by inserting before the semicolon the following: > “, including on enhancing the sharing of information related to cybersecurity risks that may cause a transportation security incident, between relevant Federal agencies and— > > > ###### “(i) > > State, local, and tribal governments; > > > ###### “(ii) > > relevant public safety and emergency response agencies; > > > ###### “(iii) > > relevant law enforcement and security organizations; > > > ###### “(iv) > > maritime industry; > > > ###### “(v) > > port owners and operators; and > > > ###### “(vi) > > terminal owners and operators;” > . ####
(2)Information sharing **[**[46 U.S.C. 70112 note](/us/usc/t46/s70112)**]** The Commandant of the Coast Guard and the Under Secretary responsible for overseeing the critical infrastructure protection, cybersecurity, and other related programs of the Department of Homeland Security shall— #####
(A)ensure there is a process for each Area Maritime Security Advisory Committee established under section 70112 of title 46, United States Code— ######
(i)to facilitate the sharing of information related to cybersecurity risks that may cause transportation security incidents; ######
(ii)to timely report transportation security incidents to the national level; and ######
(iii)to disseminate such reports across the entire maritime transportation system via the National Cybersecurity and Communications Integration Center; and #####
(B)issue voluntary guidance for the management of such cybersecurity risks in each Area Maritime Transportation Security Plan and facility security plan required under section 70103 of title 46, United States Code, approved after the date that the cybersecurity risk assessment model is developed under subsection
(a)of this section. ###
(d)Vulnerability Assessments and Security Plans ####
(1)Facility and vessel assessments Section 70102(b)(1) of title 46, United States Code, is amended— #####
(A)in the matter preceding subparagraph (A), by striking “and by not later than December 31, 2004”; and #####
(B)in subparagraph (C), by inserting “security against cybersecurity risks,” after “physical security,”. ####
(2)Maritime transportation security plans Section 70103 of title 46, United States Code, is amended— #####
(A)in subsection (a)(1), by striking “Not later than April 1, 2005, the” and inserting “The”; #####
(B)in subsection (a)(2), by adding at the end the following: > > ##### “(K) > > A plan to detect, respond to, and recover from cybersecurity risks that may cause transportation security incidents.” > ; #####
(C)in subsection (b)(2)— ######
(i)in subparagraph (G)(ii), by striking “; and” and inserting a semicolon; ######
(ii)by redesignating subparagraph
(H)as subparagraph (I); and ######
(iii)by inserting after subparagraph
(G)the following: > > ##### “(H) > > include a plan for detecting, responding to, and recovering from cybersecurity risks that may cause transportation security incidents; and” > ; and #####
(D)in subsection (c)(3)(C)— ######
(i)in clause (iv), by striking “; and” and inserting a semicolon; ######
(ii)by redesignating clause
(v)as clause (vi); and ######
(iii)by inserting after clause
(iv)the following: > > ### “(v) > > detecting, responding to, and recovering from cybersecurity risks that may cause transportation security incidents; and” > . ####
(3)Applicability **[**[46 U.S.C. 70102 note](/us/usc/t46/s70102)**]** The amendments made by this subsection shall apply to assessments or security plans, or updates to such assessments or plans, submitted after the date that the cybersecurity risk assessment model is developed under subsection (a). ###
(e)Brief to Congress Not later than 1 year after the date of enactment of this Act, the Commandant of the Coast Guard and the Under Secretary responsible for overseeing the critical infrastructure protection, cybersecurity, and other related programs of the Department of Homeland Security shall provide to the appropriate committees of Congress a briefing on how the Coast Guard will assist in security and response in the port environment when a cyber-caused transportation security incident occurs, to include the use of cyber protection teams.
Connectionstraces to 3
1 reference not yet in our index
  • 6 USC 148
Citation graph
cites case law
Sec. 1805
CYBERSECURITY INFORMATION SHARING AND COORDINATION IN PORTS
U.S.C.§ 70112
U.S.C.§ 272
U.S.C.§ 70102
Cite6 USC 148
Cites 4Cited by 0 across 0 sources
★   the supreme law of the land   ★
Don't Tread on Me
E Pluribus Unum — out of many, one

"If you don't know your rights, you don't have any."

Marginalia · a citizen's law index
A research desk, not legal advice. Always read the cited source before relying on a summary.
Questions or an issue? support@self-law.org
disclaimerMarginalia is a research index, not a law firm. Nothing on this site is legal, tax, or financial advice and no attorney–client relationship is formed by using it. Statutes, regulations, and case law change; summaries, search results, AI output, and member posts may be incomplete, out of date, or wrong. Any interpretation drawn from material on this site should be validated by a licensed attorney in your jurisdiction before you act on it.