The bill HB207 amends the Code of Alabama 1975 to enhance the governance and oversight of information technology and cybersecurity within state agencies. Key insertions include the expansion of the Office of Information Technology's responsibilities to include cybersecurity, the establishment of a Telecommunications Revolving Fund, and the creation of a technology quality assurance board. New definitions for terms such as "cybersecurity," "technology contract," and "telecommunications equipment" are introduced to clarify the office's scope. The bill also outlines the office's powers, including conducting criminal history background checks, and mandates that all telecommunications and cybersecurity equipment and services be managed under state jurisdiction.

In addition to these insertions, the bill repeals existing articles related to the Division of Data Systems Management and the Telecommunications Division within the Department of Finance, consolidating these functions under the Office of Information Technology. This streamlining aims to improve coordination and management of technology resources across state agencies. Several deletions from current law are noted, including the removal of specific references to software and hardware in inventory management and changes in terminology regarding rule-making. Overall, HB207 seeks to create a more structured and secure framework for managing technology and cybersecurity, emphasizing accountability and efficiency in state operations. The bill is set to take effect on October 1, 2025.

Statutes affected:
Introduced: 41-28-1, 41-28-2, 41-28-4, 41-28-5, 41-28-11, 41-28-12, 41-28-13, 41-28-14, 41-28-15, 41-28-16, 41-28-17
Engrossed: 41-28-1, 41-28-2, 41-28-4, 41-28-5, 41-28-11, 41-28-12, 41-28-13, 41-28-14, 41-28-15, 41-28-16, 41-28-17, 41-28-18
Enrolled: 41-28-1, 41-28-2, 41-28-4, 41-28-5, 41-28-11, 41-28-12, 41-28-13, 41-28-14, 41-28-15, 41-28-16, 41-28-17, 41-28-18