Bill Text: IL HB2371 | 2017-2018 | 100th General Assembly | Introduced

NOTE: There are more recent revisions of this legislation. Read Latest Draft
Bill Title: Amends the Data Security on State Computers Act. Requires State employees to annually undergo training by the Department of Innovation and Technology concerning cybersecurity. Allows the Department to make the training an online course. Requires the training to include detecting phishing scams, preventing spyware infections and identity theft, and preventing and responding to data breaches. Allows the Department to adopt rules to implement the program.

Spectrum: Moderate Partisan Bill (Democrat 6-1)

Status: (Passed) 2017-08-08 - Public Act . . . . . . . . . 100-0040 [HB2371 Detail]

Download: Illinois-2017-HB2371-Introduced.html


100TH GENERAL ASSEMBLY
State of Illinois
2017 and 2018
HB2371

Introduced , by Rep. Emanuel Chris Welch

SYNOPSIS AS INTRODUCED:
20 ILCS 450/25 new

Amends the Data Security on State Computers Act. Requires State employees to annually undergo training by the Department of Innovation and Technology concerning cybersecurity. Allows the Department to make the training an online course. Requires the training to include detecting phishing scams, preventing spyware infections and identity theft, and preventing and responding to data breaches. Allows the Department to adopt rules to implement the program.
LRB100 08806 HLH 18946 b
FISCAL NOTE ACT MAY APPLY

A BILL FOR

HB2371LRB100 08806 HLH 18946 b
1 AN ACT concerning State government.
2 Be it enacted by the People of the State of Illinois,
3represented in the General Assembly:
4 Section 5. The Data Security on State Computers Act is
5amended by adding Section 25 as follows:
6 (20 ILCS 450/25 new)
7 Sec. 25. Mandatory State employee training.
8 (a) As used in this Section, "employee" has the meaning
9ascribed to it in Section 1-5 of the State Officials and
10Employees Ethics Act.
11 (b) Every employee shall annually undergo training by the
12Department of Innovation and Technology concerning
13cybersecurity. The Department may, in its discretion, make the
14training an online course. The training shall include, but need
15not be limited to, detecting phishing scams, preventing spyware
16infections and identity theft, and preventing and responding to
17data breaches.
18 (c) The Department of Innovation and Technology may adopt
19rules to implement the requirements of this Section.
feedback