Smith Cybersecurity Amendment Accepted

Press Release

During a House Subcommittee on Technology and Innovation mark-up of cybersecurity legislation, Congressman Adrian Smith (R-NE) today successfully added an amendment clarifying the role of the National Institute of Standards and Technology (NIST) in information security standards. The amendment was agreed to by a voice vote.

Smith's amendment clarifies language in the bill to ensure NIST-recommended cybersecurity standards and guidelines remain voluntary for private industry and the public.

"There have been some suggestions NIST's current standards and guidelines should - directly or indirectly - be mandated for the private sector. While there is broad agreement there is an appropriate role for NIST in assisting the private sector to improve security - regulating private cybersecurity practices could be counterproductive to our overall goals.

"By placing one-size-fits-all standards and guidelines, we are hamstringing our private industries - many of which are at the forefront of cybersecurity technology. My amendment will ensure NIST's security standards and guidelines outside of the Federal government shall be voluntary," Smith said.

Source