House of Representatives

HB 2324

technical correction; government information technology

Sponsors: Marsh

 

SE DPA

Committee on Energy Utilities and Technology

x

Caucus and COW

 

 

As Passed the House

 

 

 

 

 

 

Provisions

·                      Makes technical changes relating to the Information Technology Fund.

 

A strike everything amendment was adopted in the committee on Energy Utilities and Technology that makes the following changes:

 

·                     Requires the State National Guard to organize a Joint Combined National Guard Computer Emergency Response Team charged with protecting state guard computer networks.

·                     States that the Response Team enter into a memorandum of agreement with the United States Department of Defense Computer Emergency Response Team for the purpose of sharing information pertaining to issues of threat and vulnerability.

·                     Provides that the Response Team shall adopt rules for the implementation of strategies to protect the state’s physical and cyber infrastructure.

·                     Establishes the Statewide Infrastructure Protection Center (SIPC), under the Director of Emergency Management, which is charged with protecting the state’s physical and cyber infrastructure. 

·                     Provides that the SIPC shall:

·                     Gather intelligence on threats to the State’s infrastructure

·                     Establish policies in relation to potential or real attacks on the state’s critical infrastructure as well as providing guidance for reconstitution efforts.

·                     Develop an infrastructure security awareness program in conjunction with the private sector that focuses improving alerts in the case of an attack and potential safeguards that may be implemented.

·                     Work with state agencies to develop best practice policies with regard to assurance for physical and cyber agency infrastructure. 

·                     Coordinate with the Arizona National Guard Computer Emergency Response Team, through a memorandum of agreement, for the sharing of information relating to threat and vulnerability data.

·                     Adopt rules relating to the protection of physical and cyber infrastructure.

·                     Submit an annual report to the Governor, the Director of the Government Information Technology Agency, the President of the Senate, the Speaker of the House, the Chairman of the Senate Government Committee and the Chairman of the House Committee on Energy Utilities and Technology outlining the SIPC’s plan for protecting the State’s physical and cyber infrastructure.

·                     Establishes the Computer Emergency Response Team under the direction of the Director of the Government Information Technology Agency.

·                     States that the response team must work with the SIPC to provide protection for the state’s information infrastructure.

·                     Adds that the response team must:

·                     As part of an awareness campaign, establish a program for information assurance simulations.

·                     Develop an infrastructure security awareness program in conjunction with the private sector that focuses improving alerts in the case of an attack and potential safeguards that may be implemented.

·                     Work with state agencies to develop best practice policies with regard to assurance for physical and cyber agency infrastructure.

·                     Make recommendations to federal, state and local entities charged with information assurance on how to effectively work together.

·                     Coordinate with the Arizona National Guard Computer Emergency Response Team, through a memorandum of agreement, for the sharing of information relating to threat and vulnerability data.

·                     Adopt rules necessary for the implementation of information assurance procedures.

·                     Submit an annual report to the Governor, the Director of the Government Information Technology Agency, the President of the Senate, the Speaker of the House, the Chairman of the Senate Government Committee and the Chairman of the House Committee on Energy Utilities and Technology outlining the SIPC’s plan for protecting the state’s physical and cyber infrastructure.

·                     Includes an emergency clause.

 

 

The strike everything amendment was amended in the committee on Energy Utilities and Technology as follows:

 

·                     Requires the Adjutant General to organize the Computer Emergency Response Team.

·                     Replaces the term CYBER-INFRASTRUCTURE for INFORMATION INFRASTRUCTURE throughout the bill.

·                     Allows the Department of Public Safety to investigate incidents relating to attacks or threats to physical or information infrastructure.

·                     Allows the State Infrastructure Protection Center (SIPC) and the Computer Emergency Response Team (CERT) to coordinate with political subdivisions of the state for the purpose of a statewide information assurance alertness campaign.

·                     States that the CERT must provide a clearing-house for gathering information on information technology vulnerability as well as to serve as statewide assessment and response entity.

·                     Provide a means for the state to respond to threats and or attacks on the state’s information systems as well as to monitor reconstitution efforts.

 

 

 

---------- DOCUMENT FOOTER ---------

45th Legislature                       

First Regular Session    3          February 27, 2001

 

---------- DOCUMENT FOOTER ---------