Cal. Gov. Code § 8592.35

Current through the 2024 Legislative Session.
Section 8592.35 - Updating Technology Recovery Plan
(a)
(1) On or before July 1, 2018, the department shall, in consultation with the office and compliance with Section 11549.3, update the Technology Recovery Plan element of the State Administrative Manual to ensure the inclusion of cybersecurity strategy incident response standards for each state agency to secure its critical infrastructure controls and critical infrastructure information.
(2) In updating the standards in paragraph (1), the department shall consider, but not be limited to considering, all of the following:
(A) Costs to implement the standards.
(B) Security of critical infrastructure information.
(C) Centralized management of risk.
(D) Industry best practices.
(E) Continuity of operations.
(F) Protection of personal information.
(b) Each state agency shall provide the department with a copy of its updated Technology Recovery Plan.
(c) Each state agency shall, as part of its Technology Recovery Plan, provide the department with an inventory of all critical infrastructure controls, and their associated assets, in the possession of the agency.

Ca. Gov. Code § 8592.35

Amended by Stats 2017 ch 790 (AB 1022),s 1, eff. 1/1/2018.
Added by Stats 2016 ch 508 (AB 1841),s 2, eff. 1/1/2017.