Section 3.5-316 - [Effective 7/1/2024] Modernize Maryland Oversight Commission(a)(1) In this section the following words have the meanings indicated.(2) "Commission" means the Modernize Maryland Commission.(3) "Critical system" means an information technology or cybersecurity system that is severely outdated, as determined by the Department. (b) There is an independent Modernize Maryland Commission.(c) The purpose of the Commission is to recommend best practices related to the modernization and the replacement of legacy systems.
(d) The Commission consists of the following members: (1) the Secretary, or the Secretary's designee;(2) the State Chief Information Security Officer, or the Chief Information Security Officer's designee;(3) three chief information security officers representing different units of State government, appointed by the Governor;(4) one information technology modernization expert with experience in the private sector, appointed by the Governor;(5) one representative recommended by the Maryland Chamber of Commerce with knowledge of cybersecurity issues, appointed by the Governor;(6) two individuals who are end users of State information technology systems, appointed by the Governor;(7) one representative recommended by the Cybersecurity Association of Maryland, appointed by the Governor; (8) one individual who is either an instructor or a professional in the academic field of cybersecurity at a college or university in the State, appointed by the Governor; and(9) one representative of the information technology industry, appointed by the Governor.(e) The cochairs of the Joint Committee on Cybersecurity, Information Technology, and Biotechnology shall serve as advisory, nonvoting members of the Commission. (f) A member of the Commission: (1) may not receive compensation as a member of the Commission; but(2) is entitled to reimbursement for expenses under the Standard State Travel Regulations, as provided in the State budget.(g)(1) The term of an appointed member is 3 years.(2) The terms of members are staggered as required by the terms provided for members of the Commission on July 1, 2024.(3) At the end of a term, a member continues to serve until a successor is appointed and qualifies.(h)(1) The Department, in consultation with the Department of Legislative Services, shall provide staff to the Commission.(2) The Secretary or the Secretary's designee is the chair of the Commission.(i) The Commission shall: (1) identify best practices for information technology modernization and the replacement of legacy systems;(2) provide recommendations for modernization of information technology systems to the Governor, the Secretary, and the General Assembly;(3) provide recommendations to promote transparency in modernization efforts in units of State government; and(4) each year, in accordance with § 2-1257 of the State Government Article, report its findings and recommendations to the Governor, the Secretary, the Senate Budget and Taxation Committee, the Senate Committee on Education, Energy, and the Environment, the House Appropriations Committee, the House Health and Government Operations Committee, and the Joint Committee on Cybersecurity, Information Technology, and Biotechnology.(j) The report submitted under subsection (i)(4) of this section may not contain information about the security of an information system.Amended by 2024 Md. Laws, Ch. 497,Sec. 1, eff. 7/1/2024.Added by 2022 Md. Laws, Ch. 243, Sec. 1, eff. 5/12/2022.This section is set out more than once due to postponed, multiple, or conflicting amendments.