This bill proposes a comprehensive restructuring of information technology governance in Florida by establishing the Division of Integrated Government Innovation and Technology (DIGIT) within the Executive Office of the Governor. DIGIT will take over the responsibilities of the Florida Digital Service and will function as a separate budget entity, led by a state chief information officer (CIO) appointed by the Governor. The bill outlines the qualifications for the CIO, who must avoid conflicts of interest with technology vendors, and mandates the development of standards for information technology governance, cybersecurity, and data management across state agencies. Additionally, it amends existing statutes to require agency inspectors general to evaluate compliance with these standards and mandates state agencies to submit strategic plans and reports to DIGIT.

The legislation also introduces significant amendments to enhance cybersecurity measures and data management practices. It requires state agencies to designate information security managers, conduct comprehensive risk assessments, and report cybersecurity incidents to the state chief information security officer (CISO). Local governments are also mandated to adopt cybersecurity standards and notify the CISO of incidents. Furthermore, the bill establishes the Northwest Regional Data Center as the designated state data center, responsible for providing data center services and assisting agencies in transitioning to cloud-computing services. Overall, the bill aims to improve the efficiency, security, and effectiveness of information technology management within Florida's state agencies while promoting data modernization and compliance with best practices.

Statutes affected:
S 480 Filed: 20.055, 97.0525, 119.0725, 282.00515, 282.319, 282.201, 282.206, 1004.649, 20.22, 282.604, 287.0591, 443.1113, 943.0415, 1004.444