Statutes, codes, and regulations
United States Code
Title 42 - THE PUBLIC HEALTH AND WELFAREChapter 162 - ENERGY INFRASTRUCTURESubchapter I - GRID INFRASTRUCTURE AND RESILIENCY
Part B - CYBERSECURITY
Section 18725 - Cybersecurity plan

42 U.S.C. § 18725

Download
PDF
Current through P.L. 118-78 (published on www.congress.gov on 07/30/2024)
Section 18725 - Cybersecurity plan
(a) In general

The Secretary may require, as the Secretary determines appropriate, a recipient of any award or other funding under this division-

(1) to submit to the Secretary, prior to the issuance of the award or other funding, a cybersecurity plan that demonstrates the cybersecurity maturity of the recipient in the context of the project for which that award or other funding was provided; and
(2) establish a plan for maintaining and improving cybersecurity throughout the life of the proposed solution of the project.
(b) Contents of cybersecurity plan

A cybersecurity plan described in subsection (a) shall, at a minimum, describe how the recipient described in that subsection-

(1) plans to maintain cybersecurity between networks, systems, devices, applications, or components-
(A) within the proposed solution of the project; and
(B) at the necessary external interfaces at the proposed solution boundaries;
(2) will perform ongoing evaluation of cybersecurity risks to address issues as the issues arise throughout the life of the proposed solution;
(3) will report known or suspected network or system compromises of the project to the Secretary; and
(4) will leverage applicable cybersecurity programs of the Department, including cyber vulnerability testing and security engineering evaluations.
(c) Additional guidance

Each recipient described in subsection (a) should-

(1) maximize the use of open guidance and standards, including, wherever possible-
(A) the Cybersecurity Capability Maturity Model of the Department (or a successor model); and
(B) the Framework for Improving Critical Infrastructure Cybersecurity of the National Institute of Standards and Technology; and
(2) document-
(A) any deviation from open standards; and
(B) the utilization of proprietary standards where the recipient determines that such deviation necessary.
(d) Coordination

The Office of Cybersecurity, Energy Security, and Emergency Response of the Department shall review each cybersecurity plan submitted under subsection (a) to ensure integration with Department research, development, and demonstration programs.

(e) Protection of information

Information provided to, or collected by, the Federal Government pursuant to this section the disclosure of which the Secretary reasonably foresees could be detrimental to the physical security or cybersecurity of any electric utility or the bulk-power system-

(1) shall be exempt from disclosure under section 552(b)(3) of title 5; and
(2) shall not be made available by any Federal agency, State, political subdivision of a State, or Tribal authority pursuant to any Federal, State, political subdivision of a State, or Tribal law, respectively, requiring public disclosure of information or records.

42 U.S.C. § 18725

Pub. L. 117-58, §40126, 135 Stat. 956.

EDITORIAL NOTES

REFERENCES IN TEXTThis division, referred to in subsec. (a), is div. D of Pub. L. 117-58, 135 Stat. 923, which enacted this chapter and enacted and amended numerous other sections and notes in the Code. For complete classification of div. D to the Code, see Tables.

STATUTORY NOTES AND RELATED SUBSIDIARIES

WAGE RATE REQUIREMENTSFor provisions relating to rates of wages to be paid to laborers and mechanics on projects for construction, alteration, or repair work funded under div. D or an amendment by div. D of Pub. L. 117-58, including authority of Secretary of Labor, see section 18851 of this title.

project
The terms "federally assisted housing" and "project" mean-(A) a public housing project (as such term is defined in section 3(b) of the United States Housing Act of 1937 [42 U.S.C. 1437a(b)] );(B) housing for which project-based assistance is provided under section 8 of the United States Housing Act of 1937 [42 U.S.C. 1437f] ;(C) housing that is assisted under section 1701q of title 12;(D) housing that is assisted under section 1701q of title 12, as such section existed before November 28, 1990;(E) housing financed by a loan or mortgage insured under section 1715l(d)(3) of title 12 that bears interest at a rate determined under the proviso of section 1715l(d)(5) of title 12;(F) housing insured, assisted, or held by the Secretary or a State or State agency under section 1715z-1 of title 12;(G) housing constructed or substantially rehabilitated pursuant to assistance provided under section 8(b)(2) of the United States Housing Act of 1937 [42 U.S.C. 1437f(b)(2)], as in effect before October 1, 1983, that is assisted under a contract for assistance under such section; and(H) housing that is assisted under section 8013 1 of this title.
Secretary
the term "Secretary" means-(A) the Secretary of Education for purposes of subtitle A (other than section 3201),(B) the Secretary of Agriculture for purposes of the amendments made by section 3201, and(C) the Secretary of Health and Human Services for purposes of subtitle B,