With the passage of Senate Bill 820 from the 86th Texas Legislature, districts are now required to implement several security measures. Beginning September 1, 2019, districts will need to:
Designate a security coordinator
Adopt a cybersecurity policy
Report any breach of student personally identifiable data to TEA
A district is required to have a cybersecurity policy in order to:
secure district cyberinfrastructure against cyber attacks and other cybersecurity incidents.
determine cybersecurity risk and implement mitigation planning.
The policy may not conflict with the information security standards for institutions of higher education adopted by the Department of Information Resources under Chapters 2054 and 2059, Government Code.
The superintendent of each school district must designate someone to be the cybersecurity coordinator for the district to serve as a liaison between the district and the agency in cybersecurity matters.
The cybersecurity coordinator is required to:
report any breach of the district’s information systems to the agency.
provide notice to a parent or guardian of a breach that involves a student’s PIA.
For more information: Texas Gateway CyberSecurity Tips and Tools by TEA
HB-3834 Security Awareness Training
House Bill (HB) 3834 (86R)requires DIR in consultation with the Texas Cybersecurity Council to certify at least five cybersecurity training programs for state and local government employees and also requires state and local government employees to complete a certified training program. DIR Security Awareness Information