Bill > H1293

Introduced Session

An act relating to cybersecurity; amending s. 282.0041, F.S.; providing definitions; amending s. 282.0051, F.S.; revising the purposes for which the Florida Digital Service is established; requiring the Florida Digital Service to ensure that independent project oversight on certain state agency information technology projects is performed in a certain manner; revising the date by which the Department of Management Services, acting through the Florida Digital Service, must provide certain recommendations to the Executive Office of the Governor and the Legislature; removing certain duties of the Florida Digital Service; revising the total project cost of certain projects for which the Florida Digital Service must provide project oversight; specifying the date by which the Florida Digital Service must provide certain reports; requiring the state chief information officer, in consultation with the Secretary of Management Services, to designate a state chief technology officer; providing duties of the state chief technology officer; revising the total project cost of certain projects for which certain procurement actions must be taken; removing provisions prohibiting the department, acting through the Florida Digital Service, from retrieving or disclosing certain data in certain circumstances; amending s. 282.00515, F.S.; conforming a cross-reference; amending s. 282.318, F.S.; providing that the Florida Digital Service is the lead entity for a certain purpose; requiring the Cybersecurity Operations Center to provide certain notifications; requiring the state chief information officer to make certain reports in consultation with the state chief information security officer; requiring a state agency to report ransomware and cybersecurity incidents within certain time periods; requiring the Cybersecurity Operations Center to immediately notify certain entities of reported incidents and take certain actions; requiring the state chief information security officer to notify the Legislature of certain incidents within a certain time period; requiring certain notification to be provided in a secure environment; requiring the Cybersecurity Operations Center to provide a certain report to certain entities by a specified date; requiring the Florida Digital Service to provide cybersecurity briefings to certain legislative committees; authorizing the Florida Digital Service to obtain certain access to certain infrastructure and direct certain measures; requiring a state agency head to annually designate a chief information security officer by a specified date; revising the purpose of an agency's information security manager and the date by which he or she must be designated; authorizing the department to brief certain legislative committees in a closed setting on certain records that are confidential and exempt from public records requirements; requiring such legislative committees to maintain the confidential and exempt status of certain records; authorizing certain legislators to attend meetings of the Florida Cybersecurity Advisory Council; amending s. 282.3185, F.S.; requiring a local government to report ransomware and certain cybersecurity incidents to the Cybersecurity Operations Center within certain time periods; requiring the Cybersecurity Operations Center to immediately notify certain entities of certain incidents and take certain actions; requiring certain notification to be provided in a secure environment; amending s. 282.319, F.S.; revising the membership of the Florida Cybersecurity Advisory Council; providing an effective date.

AI Summary

Committee Categories

Mike Giallombardo (R)*,  Monique Miller (R), 

Died in Information Technology Budget & Policy Subcommittee (on 06/16/2025)

Official Document