An anonymous reader shares a report: When Jen Easterly, the director of the Cybersecurity and Infrastructure Security Agency, addresses the annual Chemical Security Summit in Arlington later this month, she’ll be without a Big Stick she once wielded over the industry. Safeguarding the cybersecurity and physical security of 3,242 high-risk chemicals facilities across the country is one of CISA’s critical responsibilities. Congress has renewed this authority, dubbed the Chemical Facility Anti-Terrorism Standards (CFATS), several times since enacting it in 2007. But on July 28, lawmakers for the first time allowed it to expire — due in large part to the objections of a single senator. And there’s no indication of when they might renew it after the Senate returns from recess in September.
As a result, the risk that terrorists could weaponize dangerous chemicals produced in some of these facilities has increased, according to a senior chemical security official with CISA, who requested anonymity in order to share sensitive details about the effects of the lapse. Some of the 322 most sensitive chemicals can be used to make bombs or be released as toxic clouds, according to the official, who added that a direct attack on a facility could cause an explosion comparable to a nuclear blast. That’s not all. Without the CFATS rule, CISA also effectively has no idea who is visiting facilities or if they are stockpiling dangerous chemicals, according to the official. Until Congress renews the rule, the agency can’t send inspectors to the 160 facilities they typically visit every month. The agency can also no longer enforce penalties on facilities that violate its safety standards. At least one high-risk facility that was paying the agency’s $40,000-a-day fine for failing to redress concerns (after receiving a warning) has stopped paying, according to the official.
