Colo. Rev. Stat. § 24-33.5-1902

Current through 11/5/2024 election
Section 24-33.5-1902 - Colorado cybersecurity council - creation - council members
(1) There is created in the department of public safety and within existing resources the Colorado cybersecurity council. The council operates as a steering group to develop cybersecurity policy guidance for the governor; develop comprehensive sets of prioritized goals, requirements, initiatives, and milestones; and coordinate with the general assembly and the judicial branch regarding cybersecurity as deemed necessary and appropriate by the council. In addition, the council may:
(a) Develop a whole-of-state cybersecurity approach for the state and for local goverments, including the coordination and setting of strategic statewide cybersecurity goals, roadmaps, and best practices;
(b) Review the need to conduct risk assessments of local government systems, providing additional cybersecurity services to local governments, and proposing necessary statutory or policy changes, including the determination of ownership for these capabilities;
(c) Make recommendations to the governor and general assembly on the authority and activities of the state chief information security officer with local governments by July 1, 2022.
(2) The Colorado cybersecurity council is comprised of the following members:
(a) The governor, acting as the chairperson of the council, or the governor's designee;
(b) The chief information officer of the governor's office of information technology, or the chief information officer's designee;
(c) The chief information security officer of the governor's office of information technology, or the chief information security officer's designee;
(d) The executive director of the department of public safety, or the executive director's designee;
(e) A representative of the Colorado National Guard to be appointed by the adjutant general of the department of military and veterans affairs;
(f) The adjutant general of the department of military and veterans affairs;
(g) to (k) Repealed.
(l) The state attorney general, or the attorney general's designee;
(m) The director of the public utilities commission or the director's designee;
(n) and (o) Repealed.
(p) The chair of the cybersecurity subcommittee of the homeland security and all-hazards senior advisory committee;
(q) The director of the division of homeland security and emergency management in the department of public safety, or the director's designee;
(r) Repealed.
(s) A representative of an organization that represents Colorado municipal governments;
(t) The secretary of state or the secretary's designee;
(u) Two representatives from county governments, one of whom represents a rural county; and
(v) Any other person deemed necessary and appropriate by the governor.
(3) The council does not have any direct authority over the university of Colorado at Colorado Springs.
(4) Nothing in this section shall be construed to interfere with the duties of the chief information security officer pursuant to part 4 of article 37.5 of this title.

C.R.S. § 24-33.5-1902

Amended by 2021 Ch. 211, § 3, eff. 9/7/2021.
Added by 2016 Ch. 189, § 1, eff. 7/1/2016.
L. 2016: Entire part added, (HB 16-1453), ch. 667, p. 667, § 1, effective July 1.