[Congressional Bills 118th Congress]
[From the U.S. Government Publishing Office]
[H.R. 3208 Reported in Senate (RS)]
<DOC>
Calendar No. 710
118th CONGRESS
2d Session
H. R. 3208
[Report No. 118-304]
_______________________________________________________________________
IN THE SENATE OF THE UNITED STATES
September 25, 2024
Received; read twice and referred to the Committee on Homeland
Security and Governmental Affairs
December 17 (legislative day, December 16), 2024
Reported by Mr. Peters, with an amendment
[Strike out all after the enacting clause and insert the part printed
in italic]
_______________________________________________________________________
AN ACT
To amend the Homeland Security Act of 2002 to establish a DHS
Cybersecurity On-the-Job Training Program, and for other purposes.
Be it enacted by the Senate and House of Representatives of the
United States of America in Congress assembled,
<DELETED>SECTION 1. SHORT TITLE.</DELETED>
<DELETED> This Act may be cited as the ``DHS Cybersecurity On-the-
Job Training Program Act''.</DELETED>
<DELETED>SEC. 2. DHS CYBERSECURITY ON-THE-JOB TRAINING
PROGRAM.</DELETED>
<DELETED> (a) In General.--Subtitle A of title XXII of the Homeland
Security Act of 2002 (6 U.S.C. 141 et seq.) is amended by adding at the
end the following new section:</DELETED>
<DELETED>``SEC. 2220F. DHS CYBERSECURITY ON-THE-JOB TRAINING
PROGRAM.</DELETED>
<DELETED> ``(a) In General.--There is established within the Agency
a `DHS Cybersecurity On-the-Job Training Program' (in this section
referred to as the `Program') to voluntarily train Department employees
who are not currently in a cybersecurity position for work in matters
relating to cybersecurity at the Department. The Program shall be led
by the Director, in consultation with the Under Secretary for
Management.</DELETED>
<DELETED> ``(b) Duties of the Director.--In carrying out the Program
under subsection (a), the Director--</DELETED>
<DELETED> ``(1) shall develop a curriculum for the Program,
incorporating any existing curricula as appropriate, and
consistent with the National Initiative for Cybersecurity
Education Framework or any successor framework, which may
include distance learning instruction, in-classroom instruction
within a work location, on-the-job instruction under the
supervision of experienced cybersecurity staff, or other means
of training and education as determined appropriate by the
Director;</DELETED>
<DELETED> ``(2) shall develop criteria for participation in
the Program;</DELETED>
<DELETED> ``(3) in accordance with paragraph (1), shall
provide cybersecurity training to employees of the Department
and may, as appropriate, provide cybersecurity training to
other Federal employees; and</DELETED>
<DELETED> ``(4) shall annually for seven years submit to the
Committee on Homeland Security of the House of Representatives
and the Committee on Homeland Security and Governmental Affairs
of the Senate a report that includes--</DELETED>
<DELETED> ``(A) information relating to the number
of employees who participated in the Program in the
preceding year;</DELETED>
<DELETED> ``(B) an identification of the positions
into which employees trained through the Program were
hired after such training;</DELETED>
<DELETED> ``(C) a description of metrics used to
measure the success of the Program;</DELETED>
<DELETED> ``(D) copies of the reports submitted
pursuant to (c)(1); and</DELETED>
<DELETED> ``(E) any additional information relating
to the duties specified in this subsection.</DELETED>
<DELETED> ``(c) Duties of the Under Secretary for Management.--In
carrying out the Program under subsection (a), the Under Secretary for
Management shall--</DELETED>
<DELETED> ``(1) submit to the Secretary an annual report on
the status of vacancies in cybersecurity positions throughout
the Department;</DELETED>
<DELETED> ``(2) support efforts by the Director to identify
and recruit individuals employed by the Department to
participate in the Program;</DELETED>
<DELETED> ``(3) implement policies, including continuing
service agreements, to encourage participation in the Program
by employees throughout the Department; and</DELETED>
<DELETED> ``(4) conduct outreach to employees who complete
the Program regarding cybersecurity job opportunities within
the Department.''.</DELETED>
<DELETED> (b) Clerical Amendment.--The table of contents in section
1(b) of the Homeland Security Act of 2002 is amended by inserting after
the item relating to section 2220E the following new item:</DELETED>
<DELETED>``Sec. 2220F. DHS Cybersecurity On-the-Job Training
Program.''.
SECTION 1. SHORT TITLE.
This Act may be cited as the ``DHS Cybersecurity On-the-Job
Training Program Act''.
SEC. 2. DHS CYBERSECURITY ON-THE-JOB TRAINING PROGRAM.
(a) In General.--Subtitle A of title XXII of the Homeland Security
Act of 2002 (6 U.S.C. 651 et seq.) is amended by adding at the end the
following new section:
``SEC. 2220F. DHS CYBERSECURITY ON-THE-JOB TRAINING PROGRAM.
``(a) In General.--There is established within the Agency a `DHS
Cybersecurity On-the-Job Training Program' (in this section referred to
as the `Program') to voluntarily train Department employees who are not
currently in a cybersecurity position for work in matters relating to
cybersecurity at the Department. The Program shall be led by the
Director, in consultation with the Under Secretary for Management.
``(b) Duties of the Director.--In carrying out the Program under
subsection (a), the Director--
``(1) shall develop a curriculum for the Program,
incorporating existing curricula as appropriate and applicable,
such as the Federal Cyber Defense Skilling Academy and other
initiatives or successor programs, and consistent with the
National Initiative for Cybersecurity Education Framework or
any successor framework, which may include distance learning
instruction, in-classroom instruction within a work location,
on-the-job instruction under the supervision of experienced
cybersecurity staff, or other means of training and education
as determined appropriate by the Director;
``(2) shall develop criteria for participation in the
Program and ensure cybersecurity personnel are appropriately
coded to the National Initiative for Cybersecurity Education
Framework and successor programs;
``(3) in accordance with the curriculum described in
paragraph (1)--
``(A) shall make available cybersecurity training
to employees of the Department; and
``(B) may, as appropriate, make available
cybersecurity training to other Federal employees; and
``(4) shall, during the 7-year period beginning on the date
of enactment of this section, annually submit to the Committee
on Homeland Security of the House of Representatives and the
Committee on Homeland Security and Governmental Affairs of the
Senate a report that includes--
``(A) information relating to the number of
employees who participated in the Program in the
preceding year;
``(B) an identification of the positions into which
employees trained through the Program were hired after
such training;
``(C) a description of metrics used to measure the
success of the Program, which may include a skill
inventory for applicable positions;
``(D) copies of the reports submitted pursuant to
subsection (c)(1); and
``(E) any additional information relating to the
duties specified in this subsection.
``(c) Duties of the Under Secretary for Management.--In carrying
out the Program under subsection (a), the Under Secretary for
Management shall--
``(1) during the 7-year period beginning on the date of
enactment of this section, submit to the Secretary an annual
report on the status of vacancies in cybersecurity positions
throughout the Department;
``(2) support efforts by the Director to identify and
recruit individuals employed by the Department to participate
in the Program;
``(3) implement policies, including continuing service
agreements, to encourage participation in the Program by
employees throughout the Department; and
``(4) conduct outreach to employees who complete the
Program regarding cybersecurity job opportunities within the
Department.''.
(b) Clerical Amendment.--The table of contents in section 1(b) of
the Homeland Security Act of 2002 (Public Law 107-296; 116 Stat. 2135)
is amended by inserting after the item relating to section 2220E the
following new item:
``Sec. 2220F. DHS Cybersecurity On-the-Job Training Program.''.
Calendar No. 710
118th CONGRESS
2d Session
H. R. 3208
[Report No. 118-304]
_______________________________________________________________________
AN ACT
To amend the Homeland Security Act of 2002 to establish a DHS
Cybersecurity On-the-Job Training Program, and for other purposes.
_______________________________________________________________________
December 17 (legislative day, December 16), 2024
Reported with an amendment