HR 1258 · in committee · significant
Improving Contractor Cybersecurity Act
- technology
What this bill does
- Federal agencies cannot hire IT contractors unless they have a vulnerability disclosure policy and report security flaws to CISA.
- IT contractors working with the federal government are affected by this new requirement.
- Contractors must report vulnerabilities within seven days of discovery; CISA shares findings with national databases.
Generated by claude-haiku-4-5
Community Threads
Started by Cosponsor
- 01
How might the seven-day vulnerability reporting requirement affect smaller IT contractors' ability to compete for federal contracts?
- 02
What risks or benefits could result from CISA sharing contractor vulnerability findings in national databases?
- 03
How would federal agencies verify that contractors actually maintain and follow vulnerability disclosure policies?
Cosponsor writes these to seed civic discussion — they aren't user posts. Sign in to reply.
Sponsor · D-CA-36
Ted Lieu
Citizen cosponsors
0
In Congress
0/ 435
House Reps cosponsoring
Introduced 2025-02-12
Legislative timeline
2025-02-12 · house · IntroReferral
Referred to the House Committee on Oversight and Government Reform.
2025-02-12 · IntroReferral
Introduced in House
2025-02-12 · IntroReferral
Introduced in House
Citizen comments
Sign in to comment on this bill.
No comments yet — be the first.