PRIA Logo
Take the PRIA Score
Title 6Domestic SecurityRelease 119-73

§665c Cybersecurity State Coordinator

Title 6 › Chapter CHAPTER 1— - HOMELAND SECURITY ORGANIZATION › Subchapter SUBCHAPTER XVIII— - CYBERSECURITY AND INFRASTRUCTURE SECURITY AGENCY › Part Part A— - Cybersecurity and Infrastructure Security › § 665c

Last updated Apr 6, 2026|Official source

Summary

The Director must pick one Agency employee in every State who has cybersecurity training and experience to be the Cybersecurity State Coordinator. That person must build public and optional private partnerships, advise on governance, act as the Federal cybersecurity risk advisor, help prepare for and respond to cyber incidents (including recovery from ransomware), share threat information, point non‑federal groups to federal help and resources, support training and exercises, help set up vulnerability disclosure programs, assist state and local governments with cybersecurity plans, work with other Agency officials, and do other tasks the Director thinks are needed to reduce cyber risks to non‑federal entities. The Director must talk with relevant State, local, Tribal, and territorial officials about who is appointed and how the Coordinator does their job.

Full Legal Text

Title 6, §665c

Domestic Security — Source: USLM XML via OLRC

(a)The Director shall appoint an employee of the Agency in each State, with the appropriate cybersecurity qualifications and expertise, who shall serve as the Cybersecurity State Coordinator.
(b)The duties of a Cybersecurity State Coordinator appointed under subsection (a) shall include—
(1)building strategic public and, on a voluntary basis, private sector relationships, including by advising on establishing governance structures to facilitate the development and maintenance of secure and resilient infrastructure;
(2)serving as the Federal cybersecurity risk advisor and supporting preparation, response, and remediation efforts relating to cybersecurity risks and incidents;
(3)facilitating the sharing of cyber threat information to improve understanding of cybersecurity risks and situational awareness of cybersecurity incidents;
(4)raising awareness of the financial, technical, and operational resources available from the Federal Government to non-Federal entities to increase resilience against cyber threats;
(5)supporting training, exercises, and planning for continuity of operations to expedite recovery from cybersecurity incidents, including ransomware;
(6)serving as a principal point of contact for non-Federal entities to engage, on a voluntary basis, with the Federal Government on preparing, managing, and responding to cybersecurity incidents;
(7)assisting non-Federal entities in developing and coordinating vulnerability disclosure programs consistent with Federal and information security industry standards;
(8)assisting State, local, Tribal, and territorial governments, on a voluntary basis, in the development of State cybersecurity plans;
(9)coordinating with appropriate officials within the Agency; and
(10)performing such other duties as determined necessary by the Director to achieve the goal of managing cybersecurity risks in the United States and reducing the impact of cyber threats to non-Federal entities.
(c)The Director shall consult with relevant State, local, Tribal, and territorial officials regarding the appointment, and State, local, Tribal, and territorial officials and other non-Federal entities regarding the performance, of the Cybersecurity State Coordinator of a State.

Legislative History

Notes & Related Subsidiaries

Editorial Notes

Prior Provisions

A prior section 2217 of Pub. L. 107–296 was renumbered section 2220 and is classified to section 665f of this title.

Amendments

2021—Pub. L. 117–81 reenacted section catchline.

Statutory Notes and Related Subsidiaries

Rule of

Construction

Pub. L. 116–283, div. A, title XVII, § 1717(a)(4), Jan. 1, 2021, 134 Stat. 4100, provided that: “Nothing in this subsection [enacting this section, amending section 652 of this title, and enacting provisions set out as a note below] or the

Amendments

made by this subsection may be construed to affect or otherwise modify the authority of Federal law

Enforcement

agencies with respect to investigations relating to cybersecurity incidents.” Coordination Plan Pub. L. 116–283, div. A, title XVII, § 1717(a)(2), Jan. 1, 2021, 134 Stat. 4100, provided that: “Not later than 60 days after the date of the enactment of this Act [Jan. 1, 2021], the Director of the Cybersecurity and Infrastructure Security Agency of the Department of Homeland Security shall establish and submit to the Committee on Homeland Security and Governmental Affairs in the Senate and the Committee on Homeland Security in the House of Representatives a plan describing the reporting structure and coordination processes and procedures of Cybersecurity State Coordinators within the Cybersecurity and Infrastructure Security Agency under section 2215 of the Homeland Security Act of 2002 [Pub. L. 107–296], as added by paragraph (1)(B) [6 U.S.C. 665c].”

Reference

Citations & Metadata

Citation

6 U.S.C. § 665c

Title 6Domestic Security

Last Updated

Apr 6, 2026

Release point: 119-73