Status

PDF |Add To My Favorites |Track Bill | print page

AB-531 Office of Information Security: information security technologies.(2017-2018)

Senate:1stCmt2nd3rd2nd3rdPass
Assembly:1stCmt2nd3rdPassPassVeto
Bill Status
AB-531
Irwin (A)
-
-
Office of Information Security: information security technologies.
03/16/17
An act to add Section 11549.2 to the Government Code, relating to information security.
Assembly
09/15/17
09/06/17

Type of Measure
Inactive Bill - Vetoed
Majority Vote Required
Non-Appropriation
Fiscal Committee
Non-State-Mandated Local Program
Non-Urgency
Non-Tax levy
Last 5 History Actions
Date Action
10/14/17 Vetoed by Governor.
09/20/17 Enrolled and presented to the Governor at 4:30 p.m.
09/13/17 Senate amendments concurred in. To Engrossing and Enrolling. (Ayes 79. Noes 0. Page 3288.).
09/13/17 Assembly Rule 77(a) suspended. (Page 3254.)
09/12/17 In Assembly. Concurrence in Senate amendments pending. May be considered on or after September 14 pursuant to Assembly Rule 77.
Governor's Veto Message
To the Members of the California State Assembly:

I am returning Assembly Bill 531 without my signature.

This bill requires the Department of Technology's Office of Information Security to review state departments' information security policies to determine if they are sufficient to protect critical government information. The bill also requires the Office to develop a statewide plan to address any deficiencies it sees in its review of departments' cybersecurity practices.

By June 30th, 2018 my administration will finish information security assessments of every state department as required by AB 670. These assessments identify and correct departments' network vulnerabilities. Going forward, each department will receive additional assessments every two years. The Department is also performing audits on departments that scrutinize how their information security practices measure up to the state's information security policies. This coordinated approach to the state's cybersecurity will improve each state department's policies, procedures, and networks so that the state's critical information is secure.

Informed by these assessments and audits, in early 2018 the Department will complete a strategic plan that outlines the state's information security priorities for departments to implement.

Because these efforts will fulfill many of this bill's objectives, I am reluctant to sign the bill at this time

Sincerely,



Edmund G. Brown Jr.