US Congress House Bill 3305 (Prior Session Legislation)

---

Spectrum: Partisan Bill (Republican 3-0)
Status: Introduced on July 29 2015 - 25% progression, died in committee
Action: 2015-08-11 - Referred to the Subcommittee on Cybersecurity, Infrastructure Protection, and Security Technologies.
Pending: House Subcommittee on Cybersecurity, Infrastructure Protection, and Security Technologies Committee
Text: Latest bill text (Introduced) [PDF]

EINSTEIN Act of 2015 Amends the Homeland Security Act of 2002 to require the Department of Homeland Security (DHS) to deploy, operate, and maintain (to make available for use by any federal agency, with or without reimbursement) capabilities to protect federal agency information and federal civilian information systems, including technologies to continuously diagnose, detect, prevent, and mitigate against cybersecurity risks involving such information or systems. Authorizes the DHS Secretary to access, and allows federal agency heads to disclose to the Secretary, information traveling to or from or stored on such systems, regardless of from where the Secretary accesses such information, notwithstanding any law that would otherwise restrict or prevent such disclosures. Authorizes the Secretary to retain, use, and disclose information obtained through such activities only to protect federal agency information and federal civilian information systems from cybersecurity risks or in furtherance of the national cybersecurity and communications integration center's (NCCIC's) authority, or, with DOJ approval and if disclosure of such information is not otherwise prohibited by law, to law enforcement only to investigate, prosecute, disrupt, or otherwise respond to: criminal computer fraud; an imminent threat of death or serious bodily harm; a serious threat to a minor, including sexual exploitation or threats to physical safety; or an attempt or conspiracy to commit any of such offenses. Provides liability protections to private entities authorized to assist the Secretary for such purposes. Redefines for purposes of the NCCIC's cybersecurity functions: (1) "cybersecurity risk" to exclude actions that solely involve a violation of a consumer term of service or a consumer licensing agreement; and (2) "incident" to include an occurrence that actually or imminently jeopardizes, without lawful authority, an information system, thereby replacing a standard that includes occurrences that constitute a violation or imminent threat of violation of law, security policies, security procedures, or acceptable use policies.

EINSTEIN Act of 2015

Rep. Will Hurd [R-TX]

Rep. Michael McCaul [R-TX]

Rep. John Ratcliffe [R-TX]

Date	Chamber	Action
2015-08-11	House	Referred to the Subcommittee on Cybersecurity, Infrastructure Protection, and Security Technologies.
2015-07-29	House	Referred to House Homeland Security
2015-07-29	House	Referred to House Oversight and Government Reform
2015-07-29	House	Referred to the Committee on Oversight and Government Reform, and in addition to the Committee on Homeland Security, for a period to be subsequently determined by the Speaker, in each case for consideration of such provisions as fall within the jurisdiction of the committee concerned.
2015-07-29	House	Introduced in House

HB1560 (Related) 2016-07-14 - Read twice and referred to the Committee on Homeland Security and Governmental Affairs.

Type	Source
Summary	https://www.congress.gov/bill/114th-congress/house-bill/3305/all-info
Text	https://www.congress.gov/114/bills/hr3305/BILLS-114hr3305ih.pdf