This bill, titled the "Pipeline Security Act," amends the Implementing Recommendations of the 9/11 Commission Act of 2007 to formally assign the Transportation Security Administration (TSA) responsibility for securing pipeline transportation and facilities. The TSA Administrator, in consultation with the Cybersecurity and Infrastructure Security Agency (CISA), must protect pipelines against cybersecurity threats , acts of terrorism , and other security risks. This codifies TSA's role in safeguarding critical energy infrastructure. To fulfill this responsibility, the Administrator is directed to undertake several key actions. These include: Developing and updating security guidelines consistent with the National Institute of Standards and Technology (NIST) Framework. Promulgating necessary security directives and regulations. Sharing intelligence and information with federal, state, local, tribal, and private sector stakeholders. Assessing and inspecting the implementation of these measures, including policies and training programs. Identifying and ranking relative security risks to pipelines. The bill also mandates an industry day within one year to engage stakeholders on pipeline security matters. Furthermore, the bill requires the TSA Administrator to develop a personnel strategy within 180 days, in consultation with CISA, to effectively carry out these new responsibilities. This strategy must assess and plan for expanding TSA's cybersecurity expertise and identify necessary resources. The Administrator must report to Congress biennially on these activities, and the Government Accountability Office (GAO) will conduct a review of the Act's implementation within two years.