Staff Analysis of the Legislation
|
This bill requires local governments to report (to the state director of emergency management) any cyber attack incident, data breach or identified use of malware that "creates a life-safety event; substantially impacts the security of data and information systems; or affects critical systems, equipment or service delivery". It then authorizes any portion of a local government meeting that discusses or votes upon a cybersecurity issue to be held in executive session. Lastly, it exempts local government records, data and information concerning cybersecurity from the Open Records Act. |