Improving Contractor Cybersecurity Act

This bill requires companies that sell information technology to the federal government to have a policy for people to report security weaknesses in their products. When someone reports a security problem that could affect other government agencies or businesses, the contractor must tell the Cybersecurity and Infrastructure Security Agency within seven days. The agency then adds these security problems to national databases that track vulnerabilities.

Your Vote