Learn About the Law
Get help with your legal needs
FindLaw’s Learn About the Law features thousands of informational articles to help you understand your options. And if you’re ready to hire an attorney, find one in your area who can help.
Current as of January 01, 2024 | Updated by FindLaw Staff
a. Within 120 days after the effective date of P.L.2017, c. 133 (C.58:31-1 et seq.), 1 each water purveyor shall develop a cybersecurity program, in accordance with requirements established by the New Jersey Cybersecurity and Communications Integration Cell, as rules and regulations adopted pursuant to the “Administrative Procedure Act,” P.L.1968, c. 410 (C.52:14B-1 et seq.), that defines and implements organization accountabilities and responsibilities for cyber risk management activities, and establishes policies, plans, processes, and procedures for identifying and mitigating cyber risk to its public community water system. As part of the cybersecurity program, a water purveyor shall: identify the individual chiefly responsible for ensuring that the policies, plans processes, and procedures established pursuant to this section are executed in a timely manner; conduct risk assessments and implement appropriate controls to mitigate identified risks to the public community water system; maintain situational awareness of cyber threats and vulnerabilities to the public community water system; and create and exercise incident response and recovery plans.No later than 180 days after the effective date of P.L.2021, c. 262 (C.58:31-4.1 et al.), a water purveyor shall update its cybersecurity program to conform to the requirements of section 3 of P.L.2021, c. 262 (C.58:31-4.1).
A water purveyor shall submit a copy of the cybersecurity program developed pursuant to this subsection to the New Jersey Cybersecurity and Communications Integration Cell, in a form and manner as determined by the New Jersey Cybersecurity and Communications Integration Cell.A cybersecurity program submitted pursuant to this subsection shall not be considered a government record under P.L.1963, c. 73 (C.47:1A-1 et seq.), and shall not be made available for public inspection.
b. Within 60 days after developing the cybersecurity program required pursuant to subsection a. of this section, each water purveyor shall join the New Jersey Cybersecurity and Communications Integration Cell and create a cybersecurity incident reporting process.
c. (Deleted by amendment, P.L.2021, c. 262).
d. No later than 180 days after the effective date of P.L.2021, c. 262 (C.58:31-4.1 et al.), 2 each water purveyor shall obtain a cybersecurity insurance policy that meets any applicable standards adopted by the board.
Cite this article: FindLaw.com - New Jersey Statutes Title 58. Waters and Water Supply 58 § 31-4 - last updated January 01, 2024 | https://codes.findlaw.com/nj/title-58-waters-and-water-supply/nj-st-sect-58-31-4/
FindLaw Codes may not reflect the most recent version of the law in your jurisdiction. Please verify the status of the code you are researching with the state legislature or via Westlaw before relying on it for your legal needs.
A free source of state and federal court opinions, state laws, and the United States Code. For more information about the legal concepts addressed by these cases and statutes, visit FindLaw's Learn About the Law.
Get help with your legal needs
FindLaw’s Learn About the Law features thousands of informational articles to help you understand your options. And if you’re ready to hire an attorney, find one in your area who can help.
Search our directory by legal issue
Enter information in one or both fields (Required)