H.R. 2105: NIST Small Business Cybersecurity Act

Author's Summary:  Directs NIST to disseminate clear and concise guidance to help small business identify, assess, manage, and reduce their cybersecurity risks. This guidance is to be based on the NIST Cybersecurity Framework, and its implementation is voluntary by small businesses.

IB Summary:  NIST already produces guidelines for cybersecurity, which federal agencies are required to use following an executive order from Trump. This bill would stipulate that such guidance must explicitly consider and communicate cybersecurity guidance for small businesses. A similar bill has already passed the Senate.

Status: On House Schedule 10/6/17.

Links: https://www.govtrack.us/congress/bills/115/hr2105; https://www.govtrack.us/congress/bills/115/s770