November 17, 2021

Neguse Introduces Bicameral Cybersecurity Initiatives to Secure Supply Chains and Equip State and Local Governments

The package would protect federal agencies from cyber vulnerabilities, revise best practices for supply chain risk management and equip state and local governments

Washington D.C.— Today, Congressman Joe Neguse unveiled two bipartisan, bicameral measures to invest in cyber security initiatives, secure supply chains and equip state and local governments. 

“Recent attacks against American networks show that our foreign adversaries will stop at nothing to breach federal networks,” said Congressman Joe Neguse. “The common-sense measures we are unveiling today will secure our supply chains from cyber-attacks and equip state and local governments with essential resources to keep our communities safe from these types of threats.”

The Supply Chain Security Training Act, introduced in the Senate earlier this year by Senators Gary Peters (D-MI) and Ron Johnson (R-WI), creates a standardized training program for federal employees who are buying equipment and programs to help them recognize products that could undermine the federal government’s information security. The Act also directs the Office of Management and Budget to develop guidance for other federal agencies on how to adapt this training program for their own needs and employees.

Congressman Neguse also introduced the State and Local Government Cybersecurity Act, previously passed in the Senate by Sen. Peters and Senator Rob Portman (R-OH). This provision, which seeks to foster cybersecurity coordination between the Department of Homeland Security and state and local actors, would encourage the National Cybersecurity and Communications Integration Center to share vital security tools and protocols with state, local, tribal, and territorial governments.

Recent breaches of the federal government’s information systems, such as the attack on the SolarWinds network, have solidified the importance of shoring up our technological supply chains and mitigating cyber-threats before they escalate. Cooperation between the federal government and state, local, tribal, and territorial governments on cybersecurity matters is also crucial to a strong cyber-defense and to safeguarding Americans’ personal data.

State and local governments increasingly find themselves targeted by high-profile cyber-attacks, costing taxpayers millions of dollars and threatening the data privacy of millions of Americans. State and local governments are an attractive target because they possess a broad array of information about their citizens but often do not have the tools to adequately safeguard their systems. Financial constraints, limited resources and outdated equipment can all hinder local governments’ efforts to safeguard the personal data they collect. In recent years, hackers have successfully breached cybersecurity defenses in Atlanta, Colorado, Baltimore and Louisiana. The 2018 cyber-attack on the Colorado Department of Transportation cost an estimated $1.5 million.