[Congressional Bills 118th Congress]
[From the U.S. Government Publishing Office]
[S. 5471 Introduced in Senate (IS)]
<DOC>
118th CONGRESS
2d Session
S. 5471
To amend title 46, United States Code, to require applicants for grants
that propose to use digital infrastructure or a software component to
certify the applicant has an approved security plan that addresses the
cybersecurity risks of such digital infrastructure or software
component, and for other purposes.
_______________________________________________________________________
IN THE SENATE OF THE UNITED STATES
December 10, 2024
Mr. Cornyn (for himself and Mr. Peters) introduced the following bill;
which was read twice and referred to the Committee on Commerce,
Science, and Transportation
_______________________________________________________________________
A BILL
To amend title 46, United States Code, to require applicants for grants
that propose to use digital infrastructure or a software component to
certify the applicant has an approved security plan that addresses the
cybersecurity risks of such digital infrastructure or software
component, and for other purposes.
Be it enacted by the Senate and House of Representatives of the
United States of America in Congress assembled,
SECTION 1. SHORT TITLE.
This Act may be cited as the ``Protecting Investments in Our Ports
Act''.
SEC. 2. PORT INFRASTRUCTURE DEVELOPMENT PROGRAM APPLICATION PROCESS.
Section 54301(a)(5)(A) of title 46, United States Code, is
amended--
(1) by striking ``To be eligible'' and inserting the
following:
``(i) In general.--To be eligible''; and
(2) by adding at the end the following:
``(ii) Ensuring cybersecurity.--If a
covered applicant for a grant under this
subsection is applying to use the grant to
acquire digital infrastructure or a software
component, such applicant shall--
``(I) certify the facility for
which a covered applicant is applying
for a grant, has an approved facility
security plan pursuant to section
70103(c) of this title that addresses
the cybersecurity risks of such digital
infrastructure or software component;
or
``(II) if the approved facility
security plan of a facility for which a
covered applicant is applying for a
grant does not address such
cybersecurity risks, provide a brief
description in the application of how
such applicant will address the
cybersecurity risks of such digital
infrastructure or software component.
``(iii) Update of facility security plan.--
If the approved facility security plan required
under section 70103(c) of this title of a
facility for which a covered applicant is
applying for a grant under this subsection does
not address the cybersecurity risks of digital
infrastructure or a software component to be
acquired by such grant and such applicant
provides a brief description to address such
cybersecurity risks under clause (ii)(II), the
covered applicant shall ensure that such
security plan is updated to address such
cybersecurity risks described in clause
(ii)(II) in the next update required under
paragraph (3)(G) of such section.
``(iv) Covered applicant defined.--In this
paragraph, the term `covered applicant' means
an applicant under this subsection that is not
eligible for a grant under subsection (b).''.
<all>