BillTrack50 logo
Free Signup Login
Bill

Bill > HB2574

KS HB2574

KS HB2574
Removing the expiration on certain cybersecurity requirements, modifying the duties of chief information security officers and cybersecurity programs, requiring assessment of executive branch agency compliance with cybersecurity requirements, providing for consideration of such compliance by the legislature during the budget process and creating the judicial branch technology oversight council.

summary

Introduced
01/28/2026
In Committee
01/29/2026
Crossed Over
Passed
Dead

Introduced Session

2025-2026 Regular Session

Bill Summary

AN ACT concerning cybersecurity; relating to consolidation of cybersecurity services; modifying the duties of the chief information security officers for each branch of government, removing maturity requirements for cybersecurity programs; requiring periodic audits of such programs; creating the judicial branch technology oversight council; requiring the executive branch chief information security officer to assess executive branch agencies for compliance with cybersecurity standards and report findings to the legislature; providing for consideration of cybsersecurity compliance during the budgeting process; modifying the membership and duties of the information technology executive council; amending K.S.A. 2025 Supp. 40-110, 75-413, 75-623, 75-710, 75-711, 75-7202, 75-7203, 75-7206a, 75- 7208a, 75-7237, 75-7238, 75-7239, 75-7240, 75-7245 and 75-7246 and repealing the existing sections; also repealing K.S.A. 75-7203, as amended by section 21 of chapter 95 of the 2024 Session Laws of Kansas, and 75-7205, as amended by section 23 of chapter 95 of the 2024 Session Laws of Kansas and K.S.A. 2023 Supp. 75-7201, as amended by section 17 of chapter 95 of the 2024 Session Laws of Kansas, 75-7202, as amended by section 19 of chapter 95 of the 2024 Session Laws of Kansas, 75-7206, as amended by section 25 of chapter 95 of the 2024 Session Laws of Kansas, 75-7208, as amended by section 27 of chapter 95 of the 2024 Session Laws of Kansas, 75-7209, as amended by section 29 of chapter 95 of the 2024 Session Laws of Kansas, 75-7237, as amended by section 31 of chapter 95 of the 2024 Session Laws of Kansas, 75-7238, as amended by section 33 of chapter 95 of the 2024 Session Laws of Kansas, 75-7239, as amended by section 35 of chapter 95 of the 2024 Session Laws of Kansas, and 75- 7240, as amended by section 37 of chapter 95 of the 2024 Session Laws of Kansas.

AI Summary

This bill makes several changes to cybersecurity requirements across Kansas state government, including establishing a Judicial Branch Technology Oversight Council to set standards and policies for the judicial branch's technology, modifying the duties of Chief Information Security Officers (CISOs) for various branches to focus on developing cybersecurity programs based on the National Institute of Standards and Technology (NIST) Cybersecurity Framework (CSF) and reporting on program maturity rather than achieving specific CSF tiers by set dates, thus removing expiration dates on these requirements. It also mandates annual cybersecurity awareness training for all state employees, with access revoked for non-compliance, and requires periodic audits of cybersecurity programs for compliance with laws and policies, with audit results remaining confidential. The bill also expands the membership of the Information Technology Executive Council to include more legislative representation and requires the executive branch CISO to conduct cybersecurity assessments of executive branch agencies and report findings to the legislature, with compliance considered during the budget process, potentially leading to a 10% reduction in funding for non-complying agencies.

Committee Categories

Government Affairs

Sponsors (0)

No sponsors listed

Other Sponsors (1)

Information Technology

Last Action

House Hearing: Monday, February 2, 2026, 9:00 AM Room 218-N (on 02/02/2026)

bill text

bill summary

Loading...

bill summary

Loading...
Loading...