Sponsors (2)
The bill strengthens federal oversight and coordination of maritime cybersecurity—reducing major trade disruption risk and clarifying coverage—but likely raises taxpayer costs and compliance burdens for ports, businesses, and subnational governments while creating potential delays and coordination challenges.
Maritime-dependent businesses and transportation workers will face reduced risk of major cyber disruptions to ports and supply chains, helping protect roughly $2.1 trillion in maritime trade activity.
Federal agencies (Coast Guard, DHS, DOT) and state/local partners will have clearer statutory roles as SRMAs and better-aligned authorities, improving coordination of maritime cyber defense and response.
Taxpayers and Congress will gain stronger oversight and accountability via GAO review and required reporting to relevant committees, which should identify resource gaps and support targeted fixes.
Taxpayers and federal budgets may face increased costs because identifying Coast Guard resource shortfalls could prompt additional Coast Guard funding or reallocation of appropriations.
Regulated maritime businesses, utilities, and ports will likely face higher compliance costs and administrative burdens due to mandatory incident reporting, expanded oversight, and importing related statutory duties (e.g., reporting obligations tied to SRMA cross-references).
State and local port operators may see reduced flexibility and uneven regulatory pressure because emphasis on federal SRMA roles and narrow statutory definitions can create coordination challenges or leave novel assets uncovered.
Based on analysis of 4 sections of legislative text.
Requires GAO to review within 270 days the Coast Guard’s funding, staffing, guidance, and capability to carry out maritime cybersecurity SRMA responsibilities and report to Congress.
Introduced February 20, 2026 by Addison P. McDowell · Last progress February 20, 2026
Requires the Government Accountability Office to complete, within 270 days of enactment, a review of the U.S. Coast Guard’s funding, staffing, guidance, and overall capability to carry out Sector Risk Management Agency (SRMA) responsibilities for maritime cybersecurity, and to deliver findings and recommendations to key congressional committees. The requirement responds to concerns about growing cyber threats to the marine transportation system and whether the Coast Guard has adequate resources and guidance to enforce maritime cybersecurity rules and support industry compliance. The law also codifies definitions for the marine transportation system and links the SRMA term to the existing statutory definition, but does not itself appropriate new funding or change existing regulatory authority—it directs a GAO assessment to inform potential future legislative or budget actions.