S. 1290: Artificial Intelligence and Critical Technology Workforce Framework Act of 2025
Sponsor
Gary Peters
Democrat · MI
Bill Progress
Latest Action · Apr 3, 2025
Read twice and Referred to Commerce, Science, and Transportation. for review
Why it matters
Congress is pushing NIST to build a national playbook for AI and other critical-technology jobs now, with hard deadlines of 180 days, 540 days, and recurring 3-year reviews.
S. 1290 would turn NIST into a much more active builder of workforce frameworks for artificial intelligence, cybersecurity, and other critical or emerging technologies. The bill defines a workforce framework as a "common taxonomy and lexicon" built from tasks, knowledge, and skills that can be organized into work roles or competency areas. It also defines "competencies" as "knowledge and skills" and "workforce categories" as high-level groupings of tasks across an organization. In plain English, the bill wants a shared national language for what tech jobs are, what workers need to know, and how people can move into those roles.
The biggest hard deadline is for AI. Within 180 days after enactment, the NIST Director must assess whether more workforce frameworks are needed for additional technologies, with quantum information science given as an example. Then, not later than 540 days after enactment, NIST must develop and publish an Artificial Intelligence workforce framework, including workforce categories, work roles, and competency areas. That AI framework must include professional or employability skills, support and operations roles like finance, law and policy, ethics, privacy, human resources, IT, operational technology, supply chain security, and acquisition or procurement, plus information for people from nontechnical and nontraditional backgrounds.
The bill also tightens how NIST handles cybersecurity. Not later than 180 days after enactment, the Director must report on how NIST will keep reviewing and updating NIST Special Publication 800-181, the NICE Workforce Framework for Cybersecurity, or any successor version. A second set of reports comes 3 years after enactment and then every 3 years after that for a 9-year period. Those reports must explain how the framework is being used, what guidance the NICE program office is giving out, how employers and education providers are using it, whether it is working for people with nontraditional backgrounds, specifically individuals without bachelor's degrees, and what NIST is doing to increase adoption.
A major practical feature is who this is designed to include. NIST must consult with Federal agencies, industry, State, local, Tribal, and territorial governments, nonprofits, labor organizations, research institutions, and academic institutions. It must produce resources in multiple languages. It must also distribute cybersecurity career resources for all age groups, explicitly including K-12 students, postsecondary learners, and adult workers. And every workforce framework covered by the bill must be reviewed at least once every 3 years, with a report to Congress after each review explaining whether updates are needed and what the update plan is. The bill does not provide a funding amount, but it does create a clear schedule and a broader expectation that tech workforce planning should reach beyond four-year degree holders and traditional technical pipelines.
What does S. 1290 do?
AI framework due within 540 days
The bill requires the Director of the National Institute of Standards and Technology to develop and publish an Artificial Intelligence workforce framework not later than 540 days after enactment, including workforce categories, work roles, and competency areas.
Mandatory reviews at least every 3 years
NIST must review each workforce framework at least once every 3 years to decide whether updates are appropriate, and after every 3-year review the Director must submit a report to Congress explaining that determination and any update plans.
Cybersecurity update report due in 180 days
Not later than 180 days after enactment, the Director must report on the process for ongoing review and updates to NIST Special Publication 800-181, summarize proposed changes, identify how consultation will happen, and describe the timeline for adding support and operations domains.
Cyber reports continue for 9 years
Starting 3 years after enactment, and then every 3 years thereafter for a 9-year period, NIST must report on how the cybersecurity framework is being applied, how employers and education providers use it, how effective it is for people without bachelor's degrees, and what steps are being taken to increase adoption.
Broader job map includes support roles
The frameworks may include support and operations roles such as administration, finance, law and policy, ethics, privacy, human resources, IT, operational technology, supply chain security, and acquisition or procurement, not just narrowly technical jobs.
Resources must reach all ages and languages
The Director must disseminate cybersecurity career resources for all age groups, specifically K-12, postsecondary, and adult workers, and must produce resources in multiple languages to improve access.
Who benefits from S. 1290?
Students and career changers
They get clearer career discovery information, including for people from nontechnical and nontraditional backgrounds, plus credential guidance covering academic degrees, certificates, and certifications.
Workers without bachelor's degrees
The bill specifically requires NIST to report, beginning 3 years after enactment and every 3 years thereafter for a 9-year period, on how effective the cybersecurity framework is for individuals with nontraditional backgrounds, especially those without bachelor's degrees.
Employers in AI and cybersecurity
They benefit from a shared workforce framework that defines tasks, knowledge, skills, work roles, and workforce categories, helping them hire, train, and describe jobs more consistently.
Schools, colleges, and training providers
Education providers gain a more standardized guide for aligning programs with workforce needs, and NIST's recurring 3-year reviews can help curricula keep up with changes in AI, cybersecurity, and other emerging technologies.
Who is affected by S. 1290?
National Institute of Standards and Technology
NIST gets the main workload under the bill: assess additional framework needs within 180 days, deliver an AI framework within 540 days, review frameworks at least every 3 years, and send recurring reports to Congress.
Federal agencies and government partners
Federal agencies, along with State, local, Tribal, and territorial governments, must be consulted by NIST as it develops and updates the workforce frameworks.
Labor organizations, nonprofits, and researchers
These groups are explicitly named as consultation partners, meaning they would have a formal role in shaping framework content and updates.
Adult workers, K-12 learners, and postsecondary students
All age groups are directly targeted by the bill's outreach requirement, which says cybersecurity career resources must be disseminated for K-12, postsecondary, and adult workers.
What Congress Is Saying
S. 1290 hasn't been debated on the floor yet.
This section updates when a legislator speaks about it on the floor or in committee.
S1290 Legislative Journey
Committee Action
Apr 3, 2025
Read twice and referred to the Committee on Commerce, Science, and Transportation.
About the Sponsor
Gary Peters
Democrat, MI · 17 years in Congress
Committees: Homeland Security and Governmental Affairs, Commerce, Science, and Transportation, Armed Services
View full profile →
Cosponsors (1)
This bill has 1 cosponsor: 1 Republican. Cosponsors represent 1 state: Missouri.
Committee Sponsors
Commerce, Science, and Transportation Committee
1 of 28 committee members cosponsored
13 Democrats across this committee haven't cosponsored yet. Mobilize their constituents
What laws does S. 1290 change?
1 changes
Sections Amended
Section 2 of such Act (15 U.S.C. 272)
adding at the end the following: ``(f) Definitions
S. 1290 Quick Facts
- Committee
- Commerce, Science, and Transportation
- Chamber
- Senate
- Policy
- Science, Technology, Communications
- Introduced
- Apr 3, 2025
Read twice and Referred to Commerce, Science, and Transportation. for review
Apr 3, 2025
S. 1290 Common Questions
How long would NIST have to publish an AI workforce framework under S1290?
NIST must develop and publish an Artificial Intelligence workforce framework within 540 days after enactment under the Artificial Intelligence and Critical Technology Workforce Framework Act of 2025 (Section 2(d)).
Does S1290 require a NIST cybersecurity workforce report within 180 days?
Yes. According to S.1290 Section 2(c), NIST must report within 180 days on how it will review and update NIST Special Publication 800-181, including proposed changes and consultation plans.
How often would NIST have to review AI and other technology workforce frameworks?
Under the Artificial Intelligence and Critical Technology Workforce Framework Act of 2025, NIST must review each workforce framework at least once every 3 years and report any update plans to Congress (Section 2(b)).
What are the recurring cybersecurity reporting deadlines in S1290?
S.1290 requires cybersecurity framework use reports 3 years after enactment and every 3 years after that for a 9-year period, according to Section 2(c).
Can the AI workforce framework include nontechnical jobs like HR, finance, privacy, and procurement?
Yes. Under S.1290 Section 2(d), the AI framework must include support and operations roles, and Section 2(b) lists examples like finance, law, ethics, privacy, HR, IT, supply chain security, and acquisition or procurement.
Does the bill help people without a technical background enter AI or cybersecurity jobs?
Yes. Under the Artificial Intelligence and Critical Technology Workforce Framework Act of 2025, frameworks must include information for individuals from nontechnical or nontraditional backgrounds (Sections 2(b) and 2(d)).
Is NIST required to make cybersecurity career resources available for K-12 students and adult workers?
Yes. According to S.1290 Section 2(c), NIST must disseminate cybersecurity career resources for all age groups, specifically K-12 students, postsecondary learners, and adult workers.
Does S1290 require NIST workforce resources to be offered in multiple languages?
Yes. Under the Artificial Intelligence and Critical Technology Workforce Framework Act of 2025, NIST must produce workforce resources in multiple languages to improve access (Section 2(b)).
Which groups would NIST consult when creating AI and critical technology workforce frameworks?
S.1290 lets NIST consult federal, state, local, Tribal, and territorial governments, plus industry, nonprofits, labor organizations, research institutions, and academic institutions under Section 2(b).
Can S1290 lead to a NIST workforce framework for quantum information science?
Potentially. Under S.1290 Section 2(d), NIST must assess within 180 days whether additional frameworks are needed for technologies such as quantum information science.
Based on S. 1290 bill text
S. 1290 Bill Text
“To expand the functions of the National Institute of Standards and Technology to include workforce frameworks for critical and emerging technologies, to require the Director of the National Institute of Standards and Technology to develop an artificial intelligence workforce framework, and periodically review and update the NICE Workforce Framework for Cybersecurity, and for other purposes.”
Source: U.S. Government Publishing Office
Get notified when S. 1290 moves
Committee votes, floor action, cosponsor changes — straight to your inbox.
Bill alerts + Legisletter's monthly briefing. Unsubscribe anytime.
Science, Technology, Communications Bills
9 related bills we're tracking
GUARDRAILS Act
Referred to the Committee on Energy and Commerce, and in addition to the Committee on the Judiciary, for a period to be subsequently determined by the Speaker, in each case for consideration of such provisions as fall within the jurisdiction of the committee concerned.
Mar 20, 2026
Artificial Intelligence Civil Rights Act of 2025
Referred to the Committee on Energy and Commerce, and in addition to the Committee on Oversight and Government Reform, for a period to be subsequently determined by the Speaker, in each case for consideration of such provisions as fall within the jurisdiction of the committee concerned.
Dec 2, 2025
TAKE IT DOWN Act
Became Public Law No: 119-12.
May 19, 2025
States' Right to Regulate AI Act
Read twice and referred to the Committee on Commerce, Science, and Transportation.
Dec 17, 2025
ACERO Act
Received in the Senate and Read twice and referred to the Committee on Commerce, Science, and Transportation.
Feb 24, 2026
ASCEND Act
Received in the Senate. Read twice. Placed on Senate Legislative Calendar under General Orders. Calendar No. 344.
Feb 24, 2026
GUARDRAILS Act
Read twice and referred to the Committee on Commerce, Science, and Transportation.
Mar 26, 2026
Small Business Artificial Intelligence Advancement Act
Received in the Senate and Read twice and referred to the Committee on Commerce, Science, and Transportation.
Feb 24, 2026
Research Integrity and Foreign Influence Prevention Act
Referred to the House Committee on Science, Space, and Technology.
Jun 5, 2025
Trending Right Now
Bills gaining momentum across Congress
Congressional Tribute to Constance Baker Motley Act of 2025
Referred to the House Committee on Financial Services.
Sep 11, 2025
Deterring American AI Model Theft Act of 2026
Referred to the House Committee on Foreign Affairs.
Apr 15, 2026
AI Foundation Model Transparency Act of 2026
Referred to the House Committee on Energy and Commerce.
Mar 26, 2026
Tracking Science, Technology, Communications in Congress? Monitor bills, track cosponsor momentum, and launch advocacy campaigns — all from one advocacy platform.