The proposed bill would update current statutes by introducing new responsibilities for the National Guard of Arizona, allowing it to conduct cybersecurity assessments, including penetration testing and vendor-capability verification, to identify vulnerabilities in state technology systems. This addition enhances the National Guard's role in cyberattack prevention and response, which is not currently included in its duties. Furthermore, the bill requires the Adjutant General to include a summary of these cybersecurity activities in their annual report, thereby increasing transparency and accountability.

Additionally, the bill amends the Arizona Revised Statutes by adding a new section, 26-108, which mandates the Department of Emergency and Military Affairs' cybersecurity team to assess technology products requested by the legislative branch, including conducting audits and compliance verifications prior to procurement decisions. It also establishes a seven-year study by the Arizona Department of Homeland Security to implement a data encryption and cybersecurity strategy, with specific requirements for the encryption systems. This section will be repealed after June 30, 2034, ensuring that the updates remain relevant and timely.

Statutes affected:
House Engrossed Version: 26-108