Bloomberg Law: Privacy & Data Security brings you single-source access to the expertise of Bloomberg Law’s privacy and data security editorial team, contributing practitioners,...
The House Oct. 11 passed a bill that would provide cybersecurity guidance to the nation’s millions of small businesses, which are frequent targets of cyberattacks.
Similar legislation passed the Senate Sept. 28, and staffers for bill sponsors in both chambers told Bloomberg BNA that the differences between the legislation are minor and should be easy to resolve.
The bipartisan NIST Small Business Cybersecurity Act (H.R. 2105), which passed by voice vote, would require the Department of Commerce’s National Institute of Standards and Technology (NIST) to issue voluntary cybersecurity guidelines specific to the needs of small businesses.
House sponsor Daniel Webster (R-Fla.), owner of a multi-generational small business, told Bloomberg BNA Oct. 11 that small businesses “are more susceptible to attacks” due to limited cybersecurity resources and “tools they need to prepare for such an event.”
About 50 percent of reported cyberattacks are against companies that make $50 million in revenue or less, Daimon Geopfert, national leader and security and privacy consultant at Risk Advisory Services in Southfield, Mich., said at a recent House Small Businesses Committee hearing. Approximately 28.2 million small businesses in the U.S. employ half of all workers in the country, according to the Small Business Administration.
The NIST cybersecurity framework, which consists of voluntary cybersecurity standards that can be customized to various industry sectors, would be tailored for small businesses to “protect business owners, their employees, and their customer base, all while contributing positively to the economy,” Webster said.
A similar bipartisan bill that passed the Senate, the MAIN STREET Cybersecurity Act ( S. 770), was sponsored by Sens. Brian Schatz (R-Hawaii) and Jim Risch (R-Idaho).
The major difference between the two bills is a Senate bill provision. According to the Senate bill, if another federal agency provides small business cybersecurity resources, the head of each agency must make sure “resources are consistent with the resources disseminated” through NIST.
These differences probably won’t prevent the House and Senate from reaching an agreement and presenting legislation to President Trump in the near future.
The House and Senate bills “are substantively alike” and any differences “can be easily worked out without changing the underlying intent which is the same in both bills,” a Webster staffer told Bloomberg BNA.
Senators that sponsored the MAIN STREET Cybersecurity Act also think they can work out differences between the two pieces of legislation.
A staffer for Senate Small Business Committee Chairman Risch told Bloomberg BNA Oct. 11 that the committee and the senator “will work with the House” to pass a bill “that provides small businesses with a usable set of best practices to help keep themselves and their businesses safe from a variety of bad actors while doing business online.”
Representatives for Schatz didn’t immediately respond to Bloomberg BNA’s email request for comment.
To contact the reporter on this story: Daniel R. Stoller in Washington at firstname.lastname@example.org
To contact the editor responsible for this story: Donald Aplin at email@example.com
Copyright © 2017 The Bureau of National Affairs, Inc. All Rights Reserved.
All Bloomberg BNA treatises are available on standing order, which ensures you will always receive the most current edition of the book or supplement of the title you have ordered from Bloomberg BNA’s book division. As soon as a new supplement or edition is published (usually annually) for a title you’ve previously purchased and requested to be placed on standing order, we’ll ship it to you to review for 30 days without any obligation. During this period, you can either (a) honor the invoice and receive a 5% discount (in addition to any other discounts you may qualify for) off the then-current price of the update, plus shipping and handling or (b) return the book(s), in which case, your invoice will be cancelled upon receipt of the book(s). Call us for a prepaid UPS label for your return. It’s as simple and easy as that. Most importantly, standing orders mean you will never have to worry about the timeliness of the information you’re relying on. And, you may discontinue standing orders at any time by contacting us at 1.800.960.1220 or by sending an email to firstname.lastname@example.org.
Put me on standing order at a 5% discount off list price of all future updates, in addition to any other discounts I may quality for. (Returnable within 30 days.)
Notify me when updates are available (No standing order will be created).
This Bloomberg BNA report is available on standing order, which ensures you will all receive the latest edition. This report is updated annually and we will send you the latest edition once it has been published. By signing up for standing order you will never have to worry about the timeliness of the information you need. And, you may discontinue standing orders at any time by contacting us at 1.800.372.1033, option 5, or by sending us an email to email@example.com.
Put me on standing order
Notify me when new releases are available (no standing order will be created)