Skip to main content
Find a Lawyer

42 U.S.C. § 18935 - U.S. Code - Unannotated Title 42. The Public Health and Welfare § 18935. Dissemination of resources for research institutions

Current as of January 01, 2024 | Updated by Findlaw Staff

(a)Dissemination of resources for research institutions

(1)In general

Not later than one year after August 9, 2022, the Director shall, using the authorities of the Director under subsections (c)(15) and (e)(1)(A)(ix) of section 272 of Title 15, disseminate and make publicly available tailored resources to help qualifying institutions identify, assess, manage, and reduce their cybersecurity risk related to conducting research.

(2)Requirements

The Director shall ensure that the resources disseminated pursuant to paragraph (1)--

(A) are generally applicable and usable by a wide range of qualifying institutions;

(B) vary with the nature and size of the qualifying institutions, and the nature and sensitivity of the data collected or stored on the information systems or devices of the qualifying institutions;

(C) include elements that promote awareness of simple, basic controls, a workplace cybersecurity culture, and third-party stakeholder relationships, to assist qualifying institutions in mitigating common cybersecurity risks;

(D) include case studies, examples, and scenarios of practical application;

(E) are outcomes-based and can be implemented using a variety of technologies that are commercial and off-the-shelf; and

(F) to the extent practicable, are based on international technical standards.

(3)National cybersecurity awareness and education program

The Director shall ensure that the resources disseminated under paragraph (1) are consistent with the efforts of the Director under section 7443 of Title 15.

(4)Updates

The Director shall review periodically and update the resources under paragraph (1) as the Director determines appropriate.

(5)Voluntary resources

The use of the resources disseminated under paragraph (1) shall be considered voluntary.

(b)Other Federal cybersecurity requirements

Nothing in this section may be construed to supersede, alter, or otherwise affect any cybersecurity requirements applicable to Federal agencies.

(c)Definitions

In this section:

(1)Qualifying institutions

The term “qualifying institutions” means institutions of higher education that are awarded in excess of $50,000,000 per year in total Federal research funding.

(2)Resources

The term “resources” means guidelines, tools, best practices, technical standards, methodologies, and other ways of providing information.

Previous Part of Code Next Part of Code
Back to Chapter List

Cite this article: FindLaw.com - 42 U.S.C. § 18935 - U.S. Code - Unannotated Title 42. The Public Health and Welfare § 18935. Dissemination of resources for research institutions - last updated January 01, 2024 | https://codes.findlaw.com/us/title-42-the-public-health-and-welfare/42-usc-sect-18935/

FindLaw Codes may not reflect the most recent version of the law in your jurisdiction. Please verify the status of the code you are researching with the state legislature before relying on it for your legal needs.

Was this helpful?

Welcome to FindLaw's Cases & Codes

A free source of state and federal court opinions, state laws, and the United States Code. For more information about the legal concepts addressed by these cases and statutes, visit FindLaw’s Learn About the Law.

Go to Learn About the Law

Latest Blog Posts

For Legal Professionals

Learn About The Law

Get help with your legal needs

FindLaw’s Learn About the Law features thousands of informational articles to help you understand your options. And if you’re ready to hire an attorney, find one in your area who can help.

Go to Learn About the Law

Need to Find an Attorney?

Search our directory by legal issue

Enter information in one or both fields (Required)

Copied to clipboard