S3067-118

Reported

To require the Administrator of the Federal Emergency Management Agency to conduct an evaluation and submit to Congress a report on ways to reduce the complexity of the cost effectiveness requirements for hazard mitigation assistance, and for other purposes.

118th Congress Introduced Oct 18, 2023

Analysis under review: This bill has generated analysis that may be too generic or incomplete. Clause-level evidence remains available below.

Summary

What This Bill Does

This bill modifies the President's Cup Cybersecurity Competition, an annual government-sponsored cybersecurity competition, to require inclusion of industrial control systems (ICS) and operational technology (OT) security categories. These are the systems that control critical infrastructure like power grids, water treatment plants, and manufacturing facilities. The bill also adds spending caps, reporting requirements, and a 5-year sunset provision.

Who Benefits and How

Cybersecurity professionals with industrial control systems expertise will have new competition categories to demonstrate their skills. The cybersecurity industry, particularly firms specializing in ICS/OT security, benefits from increased visibility and talent development in this specialized field. Critical infrastructure operators may benefit from a more trained workforce in ICS security.

Who Bears the Burden and How

The Cybersecurity and Infrastructure Security Agency (CISA) Director faces additional requirements: new competition categories to organize, 20% spending caps on various budget items, mandatory reporting before each new competition, and a 5-year program sunset. No new funding is authorized, so existing resources must accommodate these expanded requirements.

Key Provisions

  • Requires biennial inclusion of industrial control systems and operational technology cybersecurity categories in competitions
  • Caps spending on prizes, competition integrity, promotional items, and uniformed services members at 20% each
  • Mandates Director submit report on previous year's competition before holding the next one
  • Sunsets competition authority 5 years after enactment

Evidence Chain:

This summary is generated from the full bill text using AI analysis. Expand "Detailed Analysis" below for identified beneficiaries/burden bearers.

At a Glance

What This Bill Does

Expands the President's Cup Cybersecurity Competition to include industrial control systems and operational technology categories, with spending limits and a 5-year sunset provision

Key Policy Areas

Cybersecurity, Government Operations, National Defense

Primary Purpose

Expands the President's Cup Cybersecurity Competition to include industrial control systems and operational technology categories, with spending limits and a 5-year sunset provision

Policy Domains

Cybersecurity Government Operations National Defense

Industrial Control Systems Cybersecurity Competition Act

Identified Gains
Contextual inference, no direct clause citation
  • Cybersecurity professionals
  • ICS/OT security firms
  • Critical infrastructure operators
Model: N/A | Version: bill_summary_v2 | Source: rs

Contextual inference, no direct clause citation

Identified Costs
Contextual inference, no direct clause citation
  • CISA Director
  • Federal government budget
Model: N/A | Version: bill_summary_v2 | Source: rs

Contextual inference, no direct clause citation

Legislative Progress

Reported
Introduced Committee Passed
Sep 23, 2024

Reported by Mr. Peters, with an amendment

Oct 18, 2023

Mr. Peters (for himself and Mr. Cassidy) introduced the following …

Stakeholder Effects

cui bono?

How this legislation distributes effects. Mention counts reflect frequency, not effect magnitude.

Government
5 mentions across 2 clauses
+3 positive -2 negative

Congressional oversight committees, Federal Emergency Management Agency, Tribal governments seeking hazard mitigation grants

Positive-direction: Congressional oversight committees, Tribal governments seeking hazard mitigation grants

Negative-direction: Federal Emergency Management Agency

State & Local Government
4 mentions across 2 clauses
+4 positive

Local governments seeking hazard mitigation grants, State governments seeking hazard mitigation grants

Nonprofits
2 mentions across 2 clauses
+2 positive

Nonprofit disaster relief organizations

3/4
sections analyzed
Full impact breakdown

Bill Structure & Actor Mappings

Who is "The Secretary" in each section?

Domains
Cybersecurity Government Operations
Actor Mappings
"the_director"
→ Director of the Cybersecurity and Infrastructure Security Agency (CISA)

Key Definitions

Terms defined in this bill

3 terms
"information technology" §2

As defined in section 11101 of title 40, United States Code

"operational technology" §2b

As defined in section 3 of the IoT Cybersecurity Improvement Act of 2020 (15 U.S.C. 278g-3a)

"industrial control systems" §2c

As defined in section 2220C of the Homeland Security Act of 2002 (6 U.S.C. 665i)

We use a combination of our own taxonomy and classification in addition to large language models to assess meaning and potential beneficiaries. High confidence means strong textual evidence. Always verify with the original bill text.

Learn more about our methodology