Bills aim to bolster electric grid's cybersecurity

The chairmen of the House and Senate committees that oversee homeland security plan to introduce legislation today that would expand the authority of the Federal Energy Regulatory Commission (FERC) to protect the country's electricity grid from cyber threats. The legislation would also require the Homeland Security Department to conduct ongoing assessments of cyber threats to the nation's critical electricity infrastructure and recommends corrective measures.

The measures Rep. Bennie Thompson (D-Miss.) and Sen. Joseph Lieberman (I-Conn.) are set to introduce would give FERC the authority to require utility companies to take protective action against cyber threats identified by national security agencies. The legislation would also give FERC the authority to issue rules or orders to protect critical elements of the electricity infrastructure. The commission would also be able to issue emergency rules or orders without prior notice if a threat is imminent.

In addition, the bill would require DHS to investigate whether the federally owned portion of the electricity infrastructure has been compromised and report its findings to Congress. The department would also have to assess cyber threats to the critical infrastructure on an ongoing basis and provide mitigation recommendations.

Private companies own and operate much of the electricity infrastructure. After the Wall Street Journal recently reported that spies had infiltrated the electricity grid, Thompson promised to introduce legislation to deal with the problem. He cited "a significant gap in current regulation to effectively secure this infrastructure."

"The effective functioning of this infrastructure is highly dependent on computer-based control systems that are used to monitor and manage sensitive processes and physical functions," a draft of his legislation states. "In the interest of national security, and to enhance domestic preparedness for and collective response to a cyber attack by a terrorist or other person, a statutory mechanism is necessary to protect the critical electric infrastructure against cybersecurity threats."

Meanwhile, Rep. John Barrow (D-Ga.) introduced a separate bill (H.R. 2165) April 29 to deal with known cybersecurity threats to the bulk power system and provide emergency authority to deal with future threats to that system. Rep. Henry Waxman (D-Calif.), chairman of the House Energy and Commerce Committee, co-sponsored the measure.

That committee's Communications, Technology and the Internet Subcommittee plans to hold a hearing May 1 on cyber threats to critical infrastructure such as the electricity grid.

About the Author

Ben Bain is a reporter for Federal Computer Week.

The Fed 100

Save the date for 28th annual Federal 100 Awards Gala.

Featured

  • Social network, census

    5 predictions for federal IT in 2017

    As the Trump team takes control, here's what the tech community can expect.

  • Rep. Gerald Connolly

    Connolly warns on workforce changes

    The ranking member of the House Oversight Committee's Government Operations panel warns that Congress will look to legislate changes to the federal workforce.

  • President Donald J. Trump delivers his inaugural address

    How will Trump lead on tech?

    The businessman turned reality star turned U.S. president clearly has mastered Twitter, but what will his administration mean for broader technology issues?

  • Login.gov moving ahead

    The bid to establish a single login for accessing government services is moving again on the last full day of the Obama presidency.

  • Shutterstock image (by Jirsak): customer care, relationship management, and leadership concept.

    Obama wraps up security clearance reforms

    In a last-minute executive order, President Obama institutes structural reforms to the security clearance process designed to create a more unified system across government agencies.

  • Shutterstock image: breached lock.

    What cyber can learn from counterterrorism

    The U.S. has to look at its experience in developing post-9/11 counterterrorism policies to inform efforts to formalize cybersecurity policies, says a senior official.

Reader comments

Please post your comments here. Comments are moderated, so they may not appear immediately after submitting. We will not post comments that we consider abusive or off-topic.

Please type the letters/numbers you see above

More from 1105 Public Sector Media Group