National Risk Management Act of 2023

12/15/2023, 4:02 PM

National Risk Management Act of 2023

This bill requires the Cybersecurity and Infrastructure Security Agency of the Department of Homeland Security (DHS) to establish a recurring process to identify and assess risks to critical infrastructure and requires the President to deliver to Congress a national critical infrastructure resilience strategy designed to address the risks identified.

The process must include elements to

  • collect relevant information from Sector Risk Management Agencies relating to the threats, vulnerabilities, and consequences related to the particular sectors of such agencies;
  • allow critical infrastructure owners and operators to submit relevant information to DHS for consideration; and
  • outline how DHS will solicit input from other federal departments and agencies.

DHS must brief the Senate and House homeland security committees on (1) the national risk management process activities undertaken pursuant to the strategy, and (2) the amounts and timeline for funding that DHS has determined would be necessary to address risks of cybersecurity threats and physical threats and successfully execute the full range of activities proposed by the strategy.

Congress
118
Number
HR - 5439
Introduced on
2023-09-13
# Amendments
0
Sponsors
+5

Status of Legislation

Bill Introduced
Introduced to House
House to Vote
Introduced to Senate
Senate to Vote

Purpose and Summary

National Risk Management Act of 2023

This bill requires the Cybersecurity and Infrastructure Security Agency of the Department of Homeland Security (DHS) to establish a recurring process to identify and assess risks to critical infrastructure and requires the President to deliver to Congress a national critical infrastructure resilience strategy designed to address the risks identified.

The process must include elements to

  • collect relevant information from Sector Risk Management Agencies relating to the threats, vulnerabilities, and consequences related to the particular sectors of such agencies;
  • allow critical infrastructure owners and operators to submit relevant information to DHS for consideration; and
  • outline how DHS will solicit input from other federal departments and agencies.

DHS must brief the Senate and House homeland security committees on (1) the national risk management process activities undertaken pursuant to the strategy, and (2) the amounts and timeline for funding that DHS has determined would be necessary to address risks of cybersecurity threats and physical threats and successfully execute the full range of activities proposed by the strategy.

Policy Areas
Emergency Management

Comments

Recent Activity

Latest Summary3/1/2024

National Risk Management Act of 2023

This bill requires the Cybersecurity and Infrastructure Security Agency of the Department of Homeland Security (DHS) to establish a recurring process to identify and assess risks to cri...

Latest Action9/13/2023
Referred to the Subcommittee on Cybersecurity and Infrastructure Protection.