US Code
Part C— Declaration of a Significant Incident
§ 677a. Definitions

(1) Asset response activityThe term “asset response activity” means an activity to support an entity impacted by an incident with the response to, remediation of, or recovery from, the incident, including—(A) furnishing technical and advisory assistance to the entity to protect the assets of the entity, mitigate vulnerabilities, and reduce the related impacts;
(B) assessing potential risks to the critical infrastructure sector or geographic region impacted by the incident, including potential cascading effects of the incident on other critical infrastructure sectors or geographic regions;
(C) developing courses of action to mitigate the risks assessed under subparagraph (B);
(D) facilitating information sharing and operational coordination with entities performing threat response activities; and
(E) providing guidance on how best to use Federal resources and capabilities in a timely, effective manner to speed recovery from the incident.
(2) DeclarationThe term “declaration” means a declaration of the Secretary under section 677b(a)(1) of this title.
(3) DirectorThe term “Director” means the Director of the Cybersecurity and Infrastructure Security Agency.
(4) Federal agencyThe term “Federal agency” has the meaning given the term “agency” in section 3502 of title 44.
(5) FundThe term “Fund” means the Cyber Response and Recovery Fund established under section 677c(a) of this title.
(6) IncidentThe term “incident” has the meaning given the term in section 3552 of title 44.
(7) RenewalThe term “renewal” means a renewal of a declaration under section 677b(d) of this title.
(8) Significant incidentThe term “significant incident”—(A) means an incident or a group of related incidents that results, or is likely to result, in demonstrable harm to—(i) the national security interests, foreign relations, or economy of the United States; or
(ii) the public confidence, civil liberties, or public health and safety of the people of the United States; and
(B) does not include an incident or a portion of a group of related incidents that occurs on—(i) a national security system (as defined in section 3552 of title 44); or
(ii) an information system described in paragraph (2) or (3) of section 3553(e) of title 44.