Bill > HB207

This bill expands the responsibilities of the Office of Information Technology (OIT) to include comprehensive cybersecurity oversight and absorbs duties previously managed by the Division of Data Systems Management and Telecommunications Division of the Department of Finance. The bill significantly restructures the office by defining new terms like cybersecurity and telecommunications equipment, and grants the Secretary of Information Technology (also called the Chief Information Officer) extensive powers to manage, coordinate, and regulate technology across state agencies. Key provisions include establishing an inventory of technology resources, managing telecommunications and cybersecurity systems, acting as a centralized approving authority for technology acquisitions, conducting criminal background checks for employees with technology access, and developing strategic technology plans. The bill also creates a revolving fund for telecommunications services, establishes procedures for technology contracts, and provides guidelines for technology procurement and management. Notably, the bill exempts certain entities like educational institutions, public safety communications, and legislative and judicial branches from some requirements, while still offering optional consultation services. The changes will take effect on October 1, 2025, and represent a comprehensive modernization of the state's approach to information technology and cybersecurity governance.