Cybersecurity Information Sharing Act of 2015--Motion to Proceed
Floor Speech
BREAK IN TRANSCRIPT
Mr. McCAIN. Mr. President, I rise in strong support of S. 754, the Cybersecurity Information Sharing Act. I want to thank my colleagues Chairman Burr and Vice Chairman Feinstein for their leadership on this critically important legislation. This bill, of which I am an original cosponsor, was overwhelmingly approved by a 14-to-1 vote in the Senate Select Committee on Intelligence in March.
Enacting legislation to confront the accumulating dangers of cyber threats must be among the highest national security priorities of the Congress. Cyber attacks on our Nation have become disturbingly common. More recently, it was the Office of Personnel Management. A few weeks before that, it was the Pentagon network, the White House, and the State Department. Before that it was Anthem and Sony--just to name a few. The status quo is unacceptable, and Congress needs to do its part in passing this legislation. But the President, as our Nation's Commander in Chief, must also do his part to deter the belligerence of our adversaries in cyber space.
The threats from China, Russia, North Korea, and Iran--not to mention the aspirations of terrorist organizations like ISIL and Al Qaeda--are steadily growing in number and severity. And our national security leadership has warned us repeatedly that we could face a cyber attack against our Nation's critical infrastructure in the not too distant future. I believe our response to such an attack, or lack thereof, could define the future of warfare.
To date, the U.S. response to cyber attacks has been tepid at best, and nonexistent at worst. Unless and until the President uses the authorities he has to deter, defend, and respond to the growing number and severity of cyber attacks, we will risk not just more of the same but emboldened adversaries and terrorist organizations that will continuously pursue more severe and destructive cyber attacks.
As ADM Mike Rogers, the commander of U.S. Cyber Command, told listeners at the Aspen Security Forum a couple weeks ago, ``to date there is little price to pay for engaging in some pretty aggressive behaviors.'' According to James Clapper, the Director of National Intelligence, ``we will see a progression or expansion of that envelope until such time as we create both a substance and psychology of deterrence. And today we don't have that.''
According to the Chairman of the Joint Chiefs of Staff, General Dempsey, our military enjoys ``a significant military advantage'' in every domain except for one--cyber space. As General Dempsey said, cyber ``is a level playing field. And that makes this chairman very uncomfortable.'' Efforts are currently underway to begin addressing some of our strategic shortfalls in cyber space, including the training of a 6,200-person cyber force. However, these efforts will be meaningless unless we make the tough policy decisions to establish meaningful cyber deterrence. The President must take steps now to demonstrate to our adversaries that the United States takes cyber attacks seriously and is prepared to respond.
This legislation before us is one piece of that overall deterrent strategy, and it is long past time that Congress move forward on information sharing legislation. The voluntary information sharing framework in this legislation is critical to addressing these threats and ensuring that the mechanisms are in place to identify those responsible for costly and crippling cyber attacks and, ultimately, deter future attacks.
Many of us have spent countless hours crafting and debating cyber legislation back to 2012. Mr. President, 2012 was the last time we attempted to pass major cyber legislation. This body has come a long way since that time. We understand that we cannot improve our cyber posture by shackling the private sector, which operates the majority of our country's critical infrastructure, with government mandates. As I argued at that time, heavyhanded regulations and government bureaucracy will do more harm than good in cyber space. The voluntary framework in this legislation represents the progress we have made in defining the role of the private sector and the role of the government in sharing threat information, defending networks, and deterring cyber attacks.
This legislation also complements actions we have taken in the National Defense Authorization Act, or NDAA, currently in conference with the House. As chairman of the Armed Services Committee, cyber security is one of my top priorities. That is why the NDAA includes a number of critical cyber provisions designed to ensure the Department of Defense has the capabilities it needs to deter aggression, defend our national security interests, and, when called upon, defeat our adversaries in cyber space.
The NDAA authorizes the Secretary of Defense to develop, prepare, coordinate, and, when authorized by the President, conduct a military cyber operation in response to malicious cyber activity carried out against the United States or a United States person by a foreign power. The NDAA also authorizes $200 million for the Secretary of Defense to assess the cyber vul ner a bil i ties of every major DOD weapons system. Finally, Congress required the President to submit an integrated policy to deter adversaries in cyber space in the fiscal year 2014 NDAA. We are still waiting on that policy, and this year's NDAA includes funding restrictions that will remain in place until it is delivered.
Every day that goes by, I fear our Nation grows more vulnerable, our privacy and security are at greater risk, and our adversaries are further emboldened. These are the stakes, and that is why it is essential that we come together and pass the Cybersecurity Information Sharing Act.
Mr. President, I thank again my friend from Florida, who is a valued member of the Senate Armed Services Committee, for his indulgence to allow me to speak. I thank my colleague.
I yield the floor.
BREAK IN TRANSCRIPT
Mr. McCAIN. I have the floor, I tell the Senator from Washington.
This is unbelievable. It is unbelievable that this body would not move forward with a cyber bill with the situation of dire consequences and dire threats to the United States of America. Admiral Rogers, the commander of U.S. Cyber Command, told listeners at the Aspen Security Forum that ``to date there is little price to pay for engaging in some pretty aggressive behaviors.''
According to James Clapper, the Director of National Intelligence, ``we will see a progression or expansion of that envelope until such time as we create both the substance and psychology of deterrence. And today we don't have that.''
The Chairman of the Joint Chiefs of Staff, General Dempsey, our military enjoys ``significant military advantage'' in every domain except for one--cyber space. General Dempsey said cyber ``is a level playing field. And that makes this chairman very uncomfortable.'' The Chairman of the Joint Chiefs of Staff is uncomfortable about the cyber threats to this Nation.
What just took place is millions of Americans had their privacy hacked into. God only knows what the consequences of that are. The other side has decided to object to proceeding with a bill that passed through the Intelligence Committee by a vote of 14 to 1. This is disgraceful--this is disgraceful. I tell my colleagues on the other side of the aisle, by blocking this legislation, you are putting this Nation in danger. By blocking this legislation, you are putting this Nation in danger by not allowing the Senate of the United States to act against a very real threat to our very existence.
I say this is a shameful day in the Senate. I urge the Democratic leader to come to the floor and allow us to consider amendments, move forward with this legislation because the security of the United States of America is in danger.
I thank my colleagues.
I yield the floor.
BREAK IN TRANSCRIPT
Source