House Science Committee approves cybersecurity framework bill

The House Science Committee approved a bill designed to encourage federal agencies to adopt cybersecurity framework developed by the National Institute of Standards and Technology (NIST). The committee approved the bill largely along party lines, despite opposition from Democratic Reps to provisions in the bill requiring NIST to evaluate and audit federal agencies’ adoption of the cybersecurity and technology guidelines.

Rep Ralph Abraham (R-LA) introduced the NIST Cybersecurity Framework, Assessment, and Auditing Act of 2017 recently, couching it as a response to recent high-profile cyber breaches like those at the Office of Personnel Management and IRS. The legislation would direct NIST to develop metrics for evaluating federal agencies’ cybersecurity and submit an initial assessment and regular audits to Congress on cybersecurity measures put in place by federal agencies. It would also set up guidance for federal agencies to incorporate the NIST cyber framework and establish working groups in the federal and private sectors to help public and private entities use the framework.