Bill > SB1363

This bill amends the State Officials and Employees Ethics Act to require mandatory annual cybersecurity training for all government officers, members, and employees. Specifically, the bill mandates that each individual must complete a comprehensive cybersecurity training program within their first 30 days of employment or taking office, and then annually thereafter. The training must cover critical areas such as identifying various cybersecurity threats (like malware, phishing, and ransomware), creating strong passwords, understanding multi-factor authentication, comprehending data privacy regulations, practicing secure file sharing, recognizing and avoiding suspicious online links and attachments, and knowing how to secure personal and government devices and report lost or stolen equipment. The goal of this legislation is to enhance the cybersecurity awareness and preparedness of government personnel, thereby reducing the risk of potential cyber incidents that could compromise government systems and sensitive information.

https://www.ilga.gov/legislation/BillStatus.asp?DocNum=1363&GAID=18&DocTypeID=SB&SessionID=114&GA=104