Section 75-7208 - [Effective Until 7/1/2026] Legislative chief information technology officer; powers and duties(a) The legislative chief information technology officer shall: (1) Review and consult with each legislative agency regarding information technology plans, deviations from the state information technology architecture, information technology project estimates and information technology project changes and overruns submitted by such agency pursuant to K.S.A. 75-7209, and amendments thereto, to determine whether the agency has complied with the policies and procedures adopted by the legislative coordinating council;
(2) report to the chief information technology architect all deviations from the state information architecture that are reported to the legislative information technology officer by legislative agencies;(3) submit recommendations to the legislative coordinating council as to the technical and management merit of information technology projects and information technology project changes and overruns ; (4) coordinate implementation of new information technology among legislative agencies and with the executive and judicial chief information technology officers;(5) designate the ownership of information resource processes and the lead agency for implementation of new technologies and networks shared by multiple agencies within the legislative branch of state government;(6) serve as staff of the joint committee; (7) perform such other functions and duties as provided by law or as directed by the legislative coordinating council or the joint committee;(8) consult and obtain approval from the revisor of statutes prior to taking action on topics related to confidentiality of information, the open records act, K.S.A. 45-215 et seq., and amendments thereto, the open meetings act, K.S.A. 75-4317 et seq., and amendments thereto, and any other legal matter related to information technology;(9) ensure that each legislative agency has the necessary information technology and cybersecurity staff imbedded within the agency to accomplish the agency's duties;(10) maintain all third-party data centers at locations within the United States or with companies that are based in the United States; and(11) create a database of all electronic devices within the branch and ensure that each device is inventoried, cataloged and tagged with an inventory device.(b) An employee of the Kansas legislative office of information services or the division of legislative administrative services shall not disclose confidential information of a legislative agency.(c) The legislative chief information technology officer may make a request to the adjutant general to permit the Kansas national guard in a state active duty capacity to perform vulnerability assessments or other assessments of the branch for the purpose of enhancing security. During such vulnerability assessments, members performing the assessment shall, to the extent possible, ensure that no harm is done to the systems being assessed. The legislative chief information technology officer shall notify the legislative agency that owns the information systems being assessed about such assessement and coordinate to mitigate the security risk.Amended by L. 2024, ch. 95,§ 26, eff. 7/1/2024.Amended by L. 2023, ch. 75,§ 8, eff. 7/1/2023. L. 1998, ch. 182, § 8; May 21.This section is set out more than once due to postponed, multiple, or conflicting amendments.