โ SB203
Require political subdivisions to adopt a cybersecurity program
Current Status: In Senate Committee (Financial Institutions, Insurance and Technology)
Summary
The bill requires political subdivisions in Ohio to adopt a cybersecurity program to safeguard their data and information technology resources. It mandates that these programs align with recognized best practices and includes provisions for training employees, reporting cybersecurity incidents, and handling ransom demands. Political subdivisions must formally approve any ransom payments through a resolution.
Rationale
The bill imposes government mandates on political subdivisions, which conflicts with the Libertarian principles of minimal government intervention and individual autonomy. It requires compliance with state-defined cybersecurity protocols, which may infringe on local governance and autonomy.
Risks and Concerns
- Increased government control over local entities
- Potential for misuse of cybersecurity data
- Financial burden on political subdivisions