Bill > A3897

This bill requires municipalities, counties, and school districts to report cybersecurity incidents to the New Jersey Cybersecurity and Communications Integration Cell (NJCCIC). The NJCCIC will then contract an independent cybersecurity company to audit the cybersecurity program and response of the affected entity. The audit will identify cyber threats, vulnerabilities, and weaknesses in the entity's cybersecurity program, and provide strategies to address them. The entity must then submit the audit and any corrective action plans to the NJCCIC. The costs of the audit will be paid by the Department of Law and Public Safety, and the entity may also apply for reimbursement of other related costs. The information collected and shared through this process will be exempt from public disclosure under the Open Public Records Act.

Budget and Finance, Business and Industry, Government Affairs

https://www.njleg.state.nj.us/bill-search/2024/A3897