Legislation authored by U.S. Sens. Gary Peters (D-MI) and Ron Johnson (R-WI) to protect the cybersecurity of the U.S. supply chain has passed the House and Senate.
The Supply Chain Security Training Act (S.2201) would help protect against threats via cybersecurity and other technological security vulnerabilities that arise when the federal government purchases services, equipment, or products.
“Federal employees who are responsible for buying software and equipment for the government must be able to recognize potential cybersecurity threats in these products,” Peters, the chair of the Homeland Security and Governmental Affairs Committee, said. “This bipartisan legislation will help federal employees deter foreign adversaries and criminal hackers from taking advantage of vulnerabilities in newly purchased technology to breach federal systems and disrupt our supply chains. I applaud my colleagues in the House for passing this bill and look forward to seeing President Biden sign it into law.”
If signed into law, the legislation will create a standardized training program to help federal employees responsible for purchasing services and equipment to help them identify whether those products could compromise the federal government’s information security.
“Counterintelligence training for federal workers who buy and sell goods and services for the government is critical, especially at a time when our adversaries are aggressively and persistently attempting to breach our systems and steal information,” Johnson said. “This is essential training that will help close a potential gap in our cyber and physical security defenses.”
The legislation now heads to President Joe Biden for his signature.