Federal - HR 2331

A bill to require an annual report on the cybersecurity of the Small Business Administration, and for other purposes.

Introduced

April 18, 2019

Description

A bill to require an annual report on the cybersecurity of the Small Business Administration, and for other purposes.

Our Position

Monitoring

Original Sponsor 1

Co-Sponsors 7

Latest Actions See More/Less

  • July 16, 2019 — Placed on the Calendar under the provisions of Rule XIV. Congressional Record p. S4852-S4853

  • July 15, 2019 — Measure passed in the House by voice vote, under suspension of the rules (two-thirds vote required). Congressional Record p. H5809

  • July 15, 2019 — Delgado, D-N.Y., motion to suspend the rules and pass the bill, agreed to by voice vote. Congressional Record p. H5807-H5809

  • June 13, 2019 — Reported to the House by the House Small Business Committee and placed on the Union Calendar. H Rept 116-114Congressional Record p. H4693

  • May 9, 2019 — Additional cosponsor(s): 1

    Craig, (D-Minn.)
  • May 8, 2019 — Additional cosponsor(s): 1

    Burchett, (R-Tenn.)
  • May 1, 2019 — Full committee consideration and markup held by the House Small Business Committee.

    May 1, 2019 — Committee Vote: Small Business Administration Cybersecurity — Vote to Report

    Require an annual report on the cybersecurity of the Small Business Administration.

    The bill would require the SBA administrator, within 180 days of the bill's enactment and annually thereafter, to submit to Congress a report that includes, an assessment of the SBA's cybersecurity infrastructure, a strategy to increase that infrastructure, an account of any equipment or system manufactured in China, and an account of any cybersecurity incident that occurred at the agency in the two years prior to the bill's enactment.

    It also would require the administrator to notify Congress, within seven days of making a determination that a cybersecurity incident occurred, and provide notice to compromised individuals or businesses within 30 days of making that determination. It also would require the administrator to submit a report to Congress on the incident within 30 days of the determination that a cybersecurity incident occurred.

    Require an annual report on the cybersecurity of the Small Business Administration.

    The bill would require the SBA administrator, within 180 days of the bill's enactment and annually thereafter, to submit to Congress a report that includes, an assessment of the SBA's cybersecurity infrastructure, a strategy to increase that infrastructure, an account of any equipment or system manufactured in China, and an account of any cybersecurity incident that occurred at the agency in the two years prior to the bill's enactment.

    It also would require the administrator to notify Congress, within seven days of making a determination that a cybersecurity incident occurred, and provide notice to compromised individuals or businesses within 30 days of making that determination. It also would require the administrator to submit a report to Congress on the incident within 30 days of the determination that a cybersecurity incident occurred.

    Ordered reported favorably to the full House by voice vote.
  • April 30, 2019 — Additional cosponsor(s): 1

    Houlahan, (D-Pa.)
  • April 29, 2019 — Additional cosponsor(s): 1

    Fitzpatrick, (R-Pa.)
  • April 18, 2019 — Original cosponsor(s): 3

    Balderson, (R-Ohio)Chabot, (R-Ohio)Velazquez, (D-N.Y.)
  • April 18, 2019 — Read twice and referred to: House Small Business.Congressional Record p. H3274