U.S. CODE
Rulings
AD/CVD
Notices
HTSUS
U.S. Code
Regs
More
Ports
About
Updates
Apps
Larger font
Smaller font
SEARCH
Toggle Dropdown
Search US Code
Search Leg. Notes
Sort by Rank
Titles Ascending
Titles Descending
10 per page
25 Result/page
50 Result/page
U.S Code last checked for updates: May 01, 2024
All Titles
Title 6
Chapter 1
Subchapter XVIII
Part A
§ 652. Cybersecurity and Infrast...
§ 653. Cybersecurity Division...
§ 652. Cybersecurity and Infrast...
§ 653. Cybersecurity Division...
U.S. Code
Notes
§ 652a.
Sector Risk Management Agencies
(a)
Definitions
In this section:
(1)
Appropriate congressional committees
The term “appropriate congressional committees” means—
(A)
the Committee on Homeland Security and the Committee on Armed Services in the House of Representatives; and
(B)
the Committee on Homeland Security and Governmental Affairs and the Committee on Armed Services in the Senate.
(2)
Critical infrastructure
(3)
Department
(4)
Director
(5)
Secretary
(7)
1
1
So in original. Probably should be “(6)”.
Sector Risk Management Agency
(b)
Critical infrastructure sector designation
(1)
Initial review
Not later than 180 days after
January 1, 2021
, the Secretary, in consultation with the heads of Sector Risk Management Agencies, shall—
(A)
review the current framework for securing critical infrastructure, as described in
section 652(c)(4) of this title
and Presidential Policy Directive 21; and
(B)
submit to the President and appropriate congressional committees a report that includes—
(i)
information relating to—
(I)
the analysis framework or methodology used to—
(aa)
evaluate the current framework for securing critical infrastructure referred to in subparagraph (A); and
(bb)
develop recommendations to—
(AA)
revise the current list of critical infrastructure sectors designated pursuant to Presidential Policy Directive 21, any successor or related document, or policy; or
(BB)
identify and designate any subsectors of such sectors;
(II)
the data, metrics, and other information used to develop the recommendations required under clause (ii); and
(ii)
recommendations relating to—
(I)
revising—
(aa)
the current framework for securing critical infrastructure referred to in subparagraph (A);
(bb)
the current list of critical infrastructure sectors designated pursuant to Presidential Policy Directive 21, any successor or related document, or policy; or
(cc)
the identification and designation of any subsectors of such sectors; and
(II)
any revisions to the list of designated Federal departments or agencies that serve as the Sector Risk Management Agency for a sector or subsector of such section, necessary to comply with paragraph (3)(B).
(2)
Periodic evaluation by the Secretary
At least once every five years, the Secretary, in consultation with the Director and the heads of Sector Risk Management Agencies, shall—
(A)
evaluate the current list of designated critical infrastructure sectors and subsectors of such sectors and the appropriateness of Sector Risk Management Agency designations, as set forth in Presidential Policy Directive 21, any successor or related document, or policy; and
(B)
recommend, as appropriate, to the President—
(i)
revisions to the current list of designated critical infrastructure sectors or subsectors of such sectors; and
(ii)
revisions to the designation of any Federal department or agency designated as the Sector Risk Management Agency for a sector or subsector of such sector.
(3)
Review and revision by the President
(A)
review the recommendation and revise, as appropriate, the designation of a critical infrastructure sector or subsector or the designation of a Sector Risk Management Agency; and
(B)
submit to the appropriate congressional committees, the Majority and Minority Leaders of the Senate, and the Speaker and Minority Leader of the House of Representatives, a report that includes—
(i)
an explanation with respect to the basis for accepting or rejecting the recommendations of the Secretary; and
(ii)
information relating to the analysis framework, methodology, metrics, and data used to—
(I)
evaluate the current framework for securing critical infrastructure referred to in paragraph (1)(A); and
(II)
develop—
(aa)
recommendations to revise—
(AA)
the list of critical infrastructure sectors designated pursuant to Presidential Policy Directive 21, any successor or related document, or policy; or
(BB)
the designation of any subsectors of such sectors; and
(bb)
the recommendations of the Secretary.
(4)
Publication
(c)
Sector Risk Management Agencies
(1)
Omitted
(2)
Omitted
(3)
References
Any reference to a Sector Specific Agency (including any permutations or conjugations thereof) in any law, regulation, map, document, record, or other paper of the United States shall be deemed to—
(A)
be a reference to the Sector Risk Management Agency of the relevant critical infrastructure sector; and
(B)
have the meaning given such term in
section 650 of this title
.
(4)
Omitted
(d)
Report and auditing
(
Pub. L. 116–283, div. H, title XC, § 9002
,
Jan. 1, 2021
,
134 Stat. 4768
;
Pub. L. 117–263, div. G, title LXXI, § 7143(d)(5)
,
Dec. 23, 2022
,
136 Stat. 3663
.)
cite as:
6 USC 652a
.list_box li,p,.cm-search-info,.cm-search-detail,.abt span,.expand-collapse_top
Get the CustomsMobile app!