NJ A1981

Bill

Requires businesses in financial, essential infrastructure, and health care industries to develop cybersecurity plans.

Introduced
01/11/2022

In Committee
01/11/2022

Crossed Over

Passed

Dead
01/08/2024

Introduced Session

2022-2023 Regular Session

Bill Summary

This bill would require a sensitive business, defined as a business engaged in the financial, essential infrastructure, or healthcare industries to develop cybersecurity programs based on regulations to be adopted by the New Jersey Cybersecurity and Communications Integration Cell (NJCCIC) in the Office of Homeland Security and Preparedness. These requirements include updating cybersecurity programs to apply to all of the sensitive business' industrial control systems if applicable, reasonably conforming these programs to the most recent version of certain industry-recognized cybersecurity frameworks, and annually certifying compliance with these requirements. The bill would require sensitive businesses to submit their cybersecurity plans and revisions to the NJCCIC. The NJCCIC would be directed to audit any sensitive business that fails to submit a cybersecurity plan.

AI Summary

This bill would require businesses in the financial, essential infrastructure, and healthcare industries in New Jersey to develop comprehensive cybersecurity programs. These programs must conform to industry-recognized cybersecurity frameworks, be updated annually, and be submitted to the New Jersey Cybersecurity and Communications Integration Cell (NJCCIC) for review. The NJCCIC would be authorized to audit any business that fails to comply with the requirements. The bill aims to strengthen the cybersecurity posture of critical industries and protect against potential cyberattacks.

Committee Categories

Business and Industry

Sponsors (1)

Raj Mukherji (D)*,

Last Action

Introduced, Referred to Assembly Science, Innovation and Technology Committee (on 01/11/2022)

Official Document

https://www.njleg.state.nj.us/bill-search/2022/A1981

(2 Companion Bills)

Version:

Document Type	Source Location
State Bill Page	https://www.njleg.state.nj.us/bill-search/2022/A1981
BillText	https://www.njleg.state.nj.us/Bills/2022/A2000/1981_I1.HTM
Bill	https://www.njleg.state.nj.us/Bills/2022/A2000/1981_I1.PDF

Bill	Bill Name	Last Action	Type
A6102	Requires businesses in financial, essential infrastructure, and health care industries to develop cybersecurity plans.	Introduced, Referred to Assembly Financial Institutions and Insurance Committee	Carry Over
S4035	Requires businesses in financial, essential infrastructure, and health care industries to develop cybersecurity plans.	Introduced in the Senate, Referred to Senate Law and Public Safety Committee	Carry Over

Bill > A1981

NJ A1981

summary

Introduced Session

Bill Summary

AI Summary

Committee Categories

Sponsors (1)

Last Action

Official Document

bill text

bill summary

bill summary

bill summary