CS/CS/CS/HB 1555 (Giallombardo) and CS/CS/SB 1662 (Collins) make several changes to the State Cybersecurity Act (Act).
CS/CS/CS/HB 1555 revises the reporting timelines and requirements for the “Cybersecurity Operations Center,” adding additional requirements for the state chief information officer and the chief information security officer. The bill requires the Cybersecurity Operations Center to immediately notify the Department of Law Enforcement and the state chief information officer of an incident. The state chief information officer will be required to notify the President of the Senate and the Speaker of the House. The bill requires the Cybercrime Operations Center to notify the Cybercrime Office of the Department of Law Enforcement of any incidents, provide regular reports and provide aid to investigate the incident. The bill requires the Cybersecurity Operations Center to provide a consolidated incident report to the Governor, the Attorney General and the Executive Director of the Department of Law Enforcement by the 30th day after the end of each quarter.
Both CS/CS/CS/HB 1555 and CS/CS/SB 1662 update the mission, goals and responsibilities of the Florida Center for Cybersecurity (“Cyber Florida”) housed within the University of South Florida (USF) and authorizes the USF president to assign the Center to an appropriate college within the university, with approval of the board of trustees. The bills outline the goals of “Cyber Florida” to research and develop initiatives in cybersecurity and related fields, among other things. The bills provide that the Department of Management Services contract with independent verification providers to implement cybersecurity resiliency program. (Wagoner)