Learn About The Law
Get help with your legal needs
FindLaw’s Learn About the Law features thousands of informational articles to help you understand your options. And if you’re ready to hire an attorney, find one in your area who can help.
Current as of January 01, 2025 | Updated by Findlaw Staff
(a) The executive branch agency heads shall:
(1) Be responsible for security of all data and information technology resources under such agency's purview, irrespective of the location of the data or resources;
(2) designate an information security officer to administer the agency's information security program that reports directly to executive leadership;
(3) participate in CISO-sponsored statewide cybersecurity program initiatives and services;
(4) ensure that if an agency owns, licenses or maintains computerized data that includes personal information, confidential information or information, the disclosure of which is regulated by law, such agency shall, in the event of a breach or suspected breach of system security or an unauthorized exposure of that information:
(A) Comply with the notification requirements set out in K.S.A. 50-7a01 et seq., and amendments thereto, and applicable federal laws and rules and regulations, to the same extent as a person who conducts business in this state; and
(B) not later than 12 hours after the discovery of the breach, suspected breach or unauthorized exposure, notify:
(i) The CISO; and
(ii) if the breach, suspected breach or unauthorized exposure involves election data, the secretary of state.
(b) The director or head of each state agency shall:
(1) Participate in annual agency leadership training to ensure understanding of:
(A) The potential impact of common types of cyberattacks and data breaches on the agency's operations and assets;
(B) how cyberattacks and data breaches on the agency's operations and assets may impact the operations and assets of other governmental entities on the state enterprise network;
(C) how cyberattacks and data breaches occur; and
(D) steps to be undertaken by the executive director or agency head and agency employees to protect their information and information systems; and
(2) coordinate with the executive CISO to implement the security standard described in K.S.A. 75-7238, and amendments thereto.
Cite this article: FindLaw.com - Kansas Statutes Chapter 75. State Departments; Public Officers and Employees § 75-7240. Executive branch agency heads; responsibilities related to security of data and information technology resources; confidentiality of reports; training; breach of system security - last updated January 01, 2025 | https://codes.findlaw.com/ks/chapter-75-state-departments-public-officers-and-employees/ks-st-sect-75-7240/
FindLaw Codes may not reflect the most recent version of the law in your jurisdiction. Please verify the status of the code you are researching with the state legislature before relying on it for your legal needs.
A free source of state and federal court opinions, state laws, and the United States Code. For more information about the legal concepts addressed by these cases and statutes, visit FindLaw’s Learn About the Law.
Get help with your legal needs
FindLaw’s Learn About the Law features thousands of informational articles to help you understand your options. And if you’re ready to hire an attorney, find one in your area who can help.
Search our directory by legal issue
Enter information in one or both fields (Required)