Skip to main content
Find a Lawyer

Maryland Code, State Finance and Procurement § 3.5-2A-03

Current as of January 01, 2025 | Updated by Findlaw Staff

(a) The head of the Office is the State Chief Information Security Officer.

(b) The State Chief Information Security Officer shall:

(1) be appointed by the Governor with the advice and consent of the Senate;

(2) serve at the pleasure of the Governor;

(3) be supervised by the Secretary; and

(4) serve as the chief information security officer of the Department.

(c) An individual appointed as the State Chief Information Security Officer under subsection (b) of this section shall:

(1) at a minimum, hold a bachelor's degree;

(2) hold appropriate information technology or cybersecurity certifications;

(3) have experience:

(i) identifying, implementing, or assessing security controls;

(ii) in infrastructure, systems engineering, or cybersecurity;

(iii) managing highly technical security, security operations centers, and incident response teams in a complex cloud environment and supporting multiple sites; and

(iv) working with common information security management frameworks;

(4) have extensive knowledge of information technology and cybersecurity field concepts, best practices, and procedures, with an understanding of existing enterprise capabilities and limitations to ensure the secure integration and operation of security networks and systems; and

(5) have knowledge of current security regulations.

(d) The State Chief Information Security Officer shall provide cybersecurity advice and recommendations to the Governor on request.

(e)(1)(i) There is a Director of Local Cybersecurity, who shall be appointed by the State Chief Information Security Officer.

(ii) The Director of Local Cybersecurity shall work in coordination with the Maryland Department of Emergency Management to provide technical assistance, coordinate resources, and improve cybersecurity preparedness for units of local government.

(2)(i) There is a Director of State Cybersecurity, who shall be appointed by the State Chief Information Security Officer.

(ii) The Director of State Cybersecurity is responsible for implementation of this section with respect to units of State government.

(f) The Department shall provide the Office with sufficient staff to perform the functions of this subtitle.

Previous Part of Code Next Part of Code
Back to Chapter List

Cite this article: FindLaw.com - Maryland Code, State Finance and Procurement § 3.5-2A-03 - last updated January 01, 2025 | https://codes.findlaw.com/md/state-finance-and-procurement/md-code-state-fin-and-proc-sect-3-5-2a-03/

FindLaw Codes may not reflect the most recent version of the law in your jurisdiction. Please verify the status of the code you are researching with the state legislature before relying on it for your legal needs.

Was this helpful?

Welcome to FindLaw's Cases & Codes

A free source of state and federal court opinions, state laws, and the United States Code. For more information about the legal concepts addressed by these cases and statutes, visit FindLaw’s Learn About the Law.

Go to Learn About the Law

Latest Blog Posts

For Legal Professionals

Learn About The Law

Get help with your legal needs

FindLaw’s Learn About the Law features thousands of informational articles to help you understand your options. And if you’re ready to hire an attorney, find one in your area who can help.

Go to Learn About the Law

Need to Find an Attorney?

Search our directory by legal issue

Enter information in one or both fields (Required)

Copied to clipboard