The bill establishes the Texas Cyber Command as a new entity within The University of Texas System, transferring certain powers and responsibilities from the Department of Information Resources. It introduces Chapter 2063 to the Government Code, detailing the command's organization, purpose, and powers, which include preventing and responding to cybersecurity incidents affecting governmental entities and critical infrastructure in Texas. Key provisions include the appointment of a chief by the governor, the creation of a cybersecurity threat intelligence center, and a dedicated incident response unit. The command will also promote public awareness, develop training programs, and administer a cybersecurity hotline, while being subject to the Texas Sunset Act for evaluation by September 1, 2035.

Additionally, the bill amends various sections of the Government Code to enhance cybersecurity measures for state agencies and contractors, including new requirements for contractors to complete certified cybersecurity training. It establishes an information sharing and analysis organization to facilitate communication about cybersecurity threats and mandates the designation of information security officers within state agencies. The bill also introduces the Texas Volunteer Incident Response Team for rapid response during cybersecurity incidents and creates regional operations centers to support cybersecurity efforts. It emphasizes the importance of proactive measures, such as biennial data security plans and vulnerability testing for state agencies, and is set to take effect on September 1, 2025.

Statutes affected:
Introduced: Government Code 325.011, Education Code 38.307, Education Code 441.185, Education Code 65.02, Government Code 772.012, Government Code 2054.0701, Government Code 2056.002 (Government Code 772, Government Code 2054, Government Code 2056, Education Code 38, Government Code 325, Education Code 441, Education Code 65)