SUMMARY:  HB 156/AP

The bill adds two new code sections related to emergency management.

Every agency, the definition of which includes school districts, shall report to the director of emergency management and homeland security, or his/her designee, any cyber attack incident, data breach, or identified use of malware on an agency or computer or network determined by the director to be the type of cyber attack, data breach, or use of malware to create a life-safety event, substantially impact the security of data and information systems, or affect critical systems, equipment, or service delivery.

The reporting requirement would be satisfied if the incident is required to be reported to the federal government.  The director of emergency management and homeland security shall, subject to approval by the Governor, promulgate rules and regulations specifying the reporting mechanism and time frame for making this report.  Any reports produced to satisfy this requirement are not subject to the Open Records Act. 

The Governor is authorized to enter into a memorandum of agreement with one or more of the major military commands in the state if it would substantially enhance the education or job placement of Georgians in the area of science, technology, engineering, math, or cyber security.  Any expenditures provided for in the agreement are subject to appropriations. 

EFFECTIVE DATE:

Upon signature of the Governor