Federal Laws Relating to Cybersecurity: Overview of Major Issues, Current Laws, and Proposed Legislation [Updated December 12, 2014] [open pdf - 2MB]
From the Summary: "For more than a decade, various experts have expressed increasing concerns about cybersecurity, in light of the growing frequency, impact, and sophistication of attacks on information systems in the United States and abroad. Consensus has also been building that the current legislative framework for cybersecurity might need to be revised. The complex federal role in cybersecurity involves both securing federal systems and assisting in protecting nonfederal systems. Under current law, all federal agencies have cybersecurity responsibilities relating to their own systems, and many have sector-specific responsibilities for critical infrastructure (CI). More than 50 statutes address various aspects of cybersecurity either directly or indirectly, but there is no overarching framework legislation in place."
CRS Report for Congress, R42114
Congressional Research Service: https://crsreports.congress.gov/