Tap any paragraph to write a margin note. Your notes collect in the Desk below the text and file under cases with @. The side-by-side margin rail opens on a larger screen.

§
Marginalia
Code · Kansas · Chapter 75 — State Departments; Public Officers And Employees

75-7238. Executive branch chief information security officer; duties.

343 words·~2 min read·/ks/chapter-75/75-7238

A research copy — for the controlling text, always check the official state or federal source. Not legal advice.

75-7238. Executive branch chief information security officer; duties.
(a)There is hereby established the position of executive branch chief information security officer (CISO). The executive CISO shall be in the unclassified service under the Kansas civil service act, shall be appointed by the governor and shall receive compensation in an amount fixed by the governor.
(b)The executive CISO shall:
(1)Report to the executive branch chief information technology officer;
(2)establish security standards and policies to protect the branch's information technology systems and infrastructure in accordance with subsection (c);
(3)ensure the confidentiality, availability and integrity of the information transacted, stored or processed in the branch's information technology systems and infrastructure;
(4)develop a centralized cybersecurity protocol for protecting and managing executive branch information technology assets and infrastructure;
(5)detect and respond to security incidents consistent with information security standards and policies;
(6)be responsible for the cybersecurity of all executive branch data and information resources;
(7)collaborate with the chief information security officers of the other branches of state government to respond to cybersecurity incidents;
(8)ensure that the governor and all executive branch employees complete cybersecurity awareness training annually and that if an employee does not complete the required training such employee's access to any state-issued hardware or the state network is revoked; and
(9)review all contracts related to information technology entered into by a person or entity within the executive branch to make efforts to reduce the risk of security vulnerabilities within the supply chain or product and ensure each contract contains standard security language.
(c)The executive CISO shall develop a cybersecurity program for each executive branch agency that complies with the national institute of standards and technology cybersecurity framework
(CSF)2.0, as in effect on July 1, 2024. The executive CISO shall ensure that such programs achieve a CSF tier of 3.0 prior to July 1, 2028, and a CSF tier of 4.0 prior to July 1, 2030. The agency head of each executive branch agency shall coordinate with the executive CISO to achieve such standards.
★   the supreme law of the land   ★
Don't Tread on Me
E Pluribus Unum — out of many, one

"If you don't know your rights, you don't have any."

Marginalia · a citizen's law index
A research desk, not legal advice. Always read the cited source before relying on a summary.
Questions or an issue? support@self-law.org
disclaimerMarginalia is a research index, not a law firm. Nothing on this site is legal, tax, or financial advice and no attorney–client relationship is formed by using it. Statutes, regulations, and case law change; summaries, search results, AI output, and member posts may be incomplete, out of date, or wrong. Any interpretation drawn from material on this site should be validated by a licensed attorney in your jurisdiction before you act on it.