Rules Committee Hearing on HR 2810 – FY 2018 NDAA

Tomorrow evening the House Rules Committee will hold [corrected meeting date information, 2130 EDT, 7-10-17] its first of two meetings on HR 2810, the FY 2018 National Defense Authorization Act (NDAA). Almost 400 amendments have been submitted to the Committee for possible floor consideration during the amendment process on HR 2810 later this week. Of those, 15 concern cybersecurity or cyberwarfare concerns. I am not providing a detailed analysis of each of these amendments at this time.

10	Pittenger (NC)	Rep.	Prohibits DOD from contracting with telecom firms found by ODNI to be complicit with DPRK cyberattacks.
46	Fitzpatrick (PA)	Rep.	Directs the Secretary of Defense to define “deterrence” in a cybersecurity landscape, and assess how this definition affects the overall cybersecurity strategy in the Department of Defense.
47	Veasey (TX)	Dem.	Directs the Secretary of Defense to conduct a study on current DoD cyber authorities, structures, and capabilities needed to protect overall civilian and government infrastructure networks and systems of the United States. The study shall identify gaps in current authorities, capabilities, personnel, or other resources necessary to respond to cyber incidents.
126	Harper (MS), Brady, Robert (PA)	Bi-Partisan	Authorizes the Speaker of the House with the concurrence of the Minority Leader to call upon the Executive Branch for additional resources in the event the House is the victim of a cyber-attack.
141	Garamendi (CA)	Dem.	Requires certain secretaries to designate a lead agency for the purposes of carrying out a GPS backup demonstration.
182	Jackson Lee (TX)	Dem.	Directs the Secretary of Defense to develop plans for early detection, mitigation, and defense against state sponsored cyberattacks targeting federal public election assets, election administrators, election workers, or voter engagement efforts.
183	Jackson Lee (TX)	Dem.	Directs Secretary of Defense to develop effective countermeasures for cyber weapons developed for offensive purposes. (This amendment recognizes that as the U.S. enhances its cyber offense capability it is critical that it is prepared to defend networks against attacks by weapons it may have developed but later obtained by adversaries, rivals, or terrorists.
195	Rosen (NV)	Dem.	Increases the Cyber Scholarship Program by $15,000,000 and increases cyber defense education for reservists and National Guard by $35,000,000 by decreasing funds provided beyond the budget request, by $50,000,000 for missile defense.
197	Rosen (NV)	Dem.	Increases funding for Historically Black Colleges and Universities/minority institutions by $10,000,000; increases Army RDTE, Defensive Cyber Tool Development by $10,000,000; increases Air Force Offensive Cyberspace Operations by $30,000,000; while decreasing funds provided beyond the budget request, by $50,000,000 for missile defense.
258	Correa (CA)	Dem.	Requires the Department of Defense to update its cyber strategy; to require the President to develop a strategy for the offensive use of cyber capabilities; and to allow for technical assistance to North Atlantic Treaty Organization members.
330	Kilmer (WA), Lamborn (CO)	Bi-Partisan	Authorizes the State Cyber Resiliency Grant Program to assist state, local, and tribal governments in preventing, preparing for, protecting against, and responding to cyber threats.
345	Lieu (CA), Amash (MI), Lofgren (CA), DelBene (WA)	Bi-Partisan	Prohibits using funds to mandate or request “backdoors” into commercial products that can be used to circumvent encryption or security protections.
348	Lipinski (IL)	Dem.	States the Secretary of Defense shall establish a cooperative program between the Office of the Chief Information Officer of the Department of Defense, the Defense Procurement Acquisition Policy, and the National Institute of Standards and Technology-Manufacturing Extension Partnership.The cooperative program established shall educate and assist small- and medium-sized manufacturing firms in the Department of Defense supply chain in achieving compliance with NIST Special Publication 800–171 titled ‘‘Protecting Controlled Unclassified Information in Nonfederal Information Systems and Organizations’’ as such publication is incorporated into the Defense Federal Acquisition Regulation Supplement.
350	Lipinski (IL)	Dem.	Expresses the sense of Congress that the Secretary of Defense should establish a cooperative program between the Office of the Chief Information Officer of the Department of Defense, the Defense Procurement Acquisition Policy, and the National Institute of Standards and Technology-Manufacturing Extension Partnership. The cooperative program established shall educate and assist small- and medium-sized manufacturing firms in the Department of Defense supply chain in achieving compliance with NIST Special Publication 800–171 titled ‘‘Protecting Controlled Unclassified Information in Nonfederal Information Systems and Organizations’’ as such publication is incorporated into the Defense Federal Acquisition Regulation Supplement.
352	Lipinski (IL), Khanna (CA), Knight (CA), Moulton (MA), Eshoo (CA)	Bi-Partisan	Authorizes $5 million for the development of curriculum, recruitment materials, and best practices to expand the Hacking for Defense program. Expresses the sense of Congress that the program provides a unique pathway for veterans to leverage their military experience to solve national security challenges.