The State and Local Government Cybersecurity Act of 2019 aims to clarify and coordinate cybersecurity and infrastructure security measures between the government and other entities. The bill amends the Homeland Security Act of 2002, specifically sections related to cybersecurity and infrastructure security, by first defining the previously-undefined word “entity” as used in those areas of law. The new definition specifically covers domestic and foreign state, local, and tribal governments; domestic and foreign non-governmental organizations; and the general public in the US. The bill then specifies that the Department of Homeland Security (DHS) must provide cybersecurity and infrastructure security funding and support to these entities for projects that would detect cybersecurity risks, defend against cyber threats, and provide information and education related to cybersecurity.
This bill further directs the DHS’s National Cybersecurity and Communications Integration Center to oversee cybersecurity coordination, communication, and training efforts between federal and non-federal entities; such efforts must include those related to election security. This bill would also require a report to Congress one year after the bill’s enactment and every two years afterwards on current cybersecurity measures and gaps in each state and in the US’s largest urban areas.