H.R. 1224 would direct the National Institute of Standards and Technology (NIST) to perform several new duties to promote and audit the compliance of federal agencies with federal guidelines and requirements for managing cybersecurity and other information risks. Based on an analysis of information from NIST and several of the affected agencies, CBO estimates that implementing the bill would cost $48 million over the 2018-2022 period, assuming appropriation of the necessary amounts.
Enacting H.R. 1224 would not affect direct spending or revenues; therefore, pay-as-you-go procedures do not apply. CBO estimates that enacting H.R. 1224 would not increase net direct spending or on-budget deficits in any of the four consecutive 10-year periods beginning in 2028.
H.R. 1224 contains no intergovernmental or private-sector mandates as defined in the Unfunded Mandates Reform Act and would not affect the budgets of state, local, or tribal governments.