Sec. 8244. REPORT ON COAST GUARD RESPONSE CAPABILITIES FOR CYBER INCIDENTS ON VESSELS ENTERING PORTS OR WATERS OF THE UNITED STATES
476 words·~2 min read·
/statute-compilations/comps-16736/sec-8244A research copy — for the controlling text, always check the official state or federal source. Not legal advice.
## SEC. 8244 REPORT ON COAST GUARD RESPONSE CAPABILITIES FOR CYBER INCIDENTS ON VESSELS ENTERING PORTS OR WATERS OF THE UNITED STATES ###
(a)In General Not later than 1 year after the date of the enactment of this Act, the Commandant shall submit to the Committee on Commerce, Science, and Transportation of the Senate and the Committee on Transportation and Infrastructure of the House of Representatives a report on the response capabilities of the Coast Guard with respect to cyber incidents on vessels entering ports or waters of the United States. ###
(b)Review The report under subsection
(a)shall include a review of each of the following: ####
(1)The number and type of commercial vessels of the United States subject to regulations under part 104 of title 33, Code of Federal Regulations (or any corresponding similar regulation or ruling). ####
(2)Policies and guidance issued by the Commandant, in accordance with guidelines on cyber risk management of the International Maritime Organization, to vessels of the United States. ####
(3)Measures to be taken by owners or operators of commercial vessels of the United States to increase cybersecurity posture on such vessels. ####
(4)Responses of the Commandant to cyber incidents on vessels described in paragraph
(1)prior to the date of the enactment of this Act. ####
(5)Response protocols followed by personnel of the Coast Guard to a cyber incident on any vessel described in paragraph
(1)experienced while that vessel is traveling to ports or waters of the United States. ####
(6)Oversight by the Commandant of— #####
(A)vessel-to-facility interface, as defined in section 101.105 of title 33, Code of Federal Regulations (or any corresponding similar regulation or ruling); and #####
(B)actions taken by the Coast Guard in coordination with vessel and facility owners and operators to protect commercial vessels and port facility infrastructure from cyber attacks and proliferation. ####
(7)Requirements of the Commandant for the reporting of cyber incidents that occur on the vessels described in paragraph (1). ###
(c)Recommendations and Appropriations The Commandant shall include in the report under subsection (a)— ####
(1)recommendations— #####
(A)to improve cyber incident response; and #####
(B)for policies to address gaps identified by the review under subsection (b); and ####
(2)a description of authorities and appropriations necessary to improve the preparedness of the Coast Guard for cyber incidents on vessels entering ports or waters of the United States and the ability of the Coast Guard to prevent and respond to such incidents. ###
(d)Form The report required under subsection
(a)shall be submitted in unclassified form, but may contain a classified annex. ###
(e)Vessel of the United States Defined In this section, the term “vessel of the United States” has the meaning given such term in section 116 of title 46, United States Code.