Updated
Updated · Nextgov/FCW · Jun 10
Warner Introduces Bill Requiring 16 Sector Cyber Plans Updated Within 1 Year Against AI Threats
Updated
Updated · Nextgov/FCW · Jun 10

Warner Introduces Bill Requiring 16 Sector Cyber Plans Updated Within 1 Year Against AI Threats

2 articles · Updated · Nextgov/FCW · Jun 10

Summary

  • One year after enactment, CISA would have to refresh cybersecurity plans for all 16 critical infrastructure sectors under legislation introduced by Sen. Mark Warner.
  • The bill responds to warnings that advanced AI tools can speed the discovery and exploitation of software flaws, and it would require the plans to address AI-enabled hacking and deepfakes.
  • Every 2 years, CISA would have to reassess and revise the plans with sector risk agencies, then send updated versions to Congress within 30 days of completion.
  • Some sector plans have gone more than a decade without updates despite a 2024 national security memorandum calling for biennial revisions, underscoring the gap Warner says the bill would close.
  • A separate provision would have CISA and Treasury assess whether future quantum computers could break encryption protecting digital assets, extending the measure beyond AI to longer-term cyber risks.

Insights

Can mandated biennial updates protect infrastructure from AI threats that evolve in weeks, not years?
How can the US defend against future quantum threats that could shatter today's digital security?
As AI automates cyberattacks, are we facing a future where human defenders are simply outmatched?