Sponsors (5)
The bill prolongs DHS cybersecurity authorities to keep protections and regulatory continuity in place, at the cost of continued compliance burdens for covered entities and extended regulatory reach that some view as intrusive.
Federal systems, critical infrastructure operators (e.g., utilities and energy companies), and federal employees keep existing DHS cybersecurity protections and programs in place, preserving active defenses and reducing near-term cyber risk to government and infrastructure.
State and federal agencies and other regulated entities avoid a lapse or change in rules, maintaining continuity of oversight and implementation so operations and compliance processes are not disrupted.
Utilities, state governments, and other covered entities continue to face compliance obligations and associated costs because the subchapter remains in force for a longer period.
Federal employees, state governments, and some members of the public experience an extended scope of DHS authorities that could be seen as intrusive, delaying additional congressional review or changes to those authorities.
Based on analysis of 2 sections of legislative text.
Extends the statutory effective period for the Cybersecurity Act’s information-sharing subchapter by replacing its current expiration dates with new dates.
Introduced April 8, 2025 by Gary C. Peters · Last progress April 8, 2025
Extends the time that the Cybersecurity Act’s information-sharing subchapter remains in effect by replacing the statute’s current start/end dates with a new date range. Also gives the Act a short title for citation. The change is procedural: it does not create new programs or funding, but it keeps the existing information-sharing legal framework in force for a longer period so departments, companies, and governments can continue to share cyber threat information under the current statutory authority.