BILL ANALYSIS

 

 

S.B. 1134

By: Ellis

Technology

Committee Report (Unamended)

 

 

 

BACKGROUND AND PURPOSE

 

Current law requires DIR to establish and administer a clearinghouse for information relating to all aspects of protecting the security of state agency information. In the recent past, there have been data breaches at state agencies that affected millions of Texans. Interested parties assert that human error plays a large role in the security breaches that various state agencies have experienced in the last several years. Those parties also assert that the threat posed by hackers and other malicious actors cannot be overlooked. Technology is advancing so fast that it can be difficult for information technology departments to keep up with the changes, increasing the risk of attack.

SB 1134 seeks to update and codify the duties of the Department of Information Resources (DIR) with regard to cybersecurity.

 

RULEMAKING AUTHORITY

 

It is the committee's opinion that this bill does not expressly grant any additional rulemaking authority to a state officer, department, agency, or institution.

 

ANALYSIS

 

SB 1134 amends the Government Code to require the Department of Information Resources (DIR), from available funds, to establish and administer a clearinghouse for information relating to all aspects of protecting the cybersecurity, rather than security, of state agency information; develop strategies and a framework for the securing of cyberinfrastructure by state agencies, including critical infrastructure; and cybersecurity risk assessment and mitigation planning; develop and provide training to state agencies on cybersecurity measures and awareness; provide assistance to state agencies on request regarding the strategies and framework developed under this section; and to promote public awareness of cybersecurity issues.

 

EFFECTIVE DATE

 

September 1, 2013.