United States of America: Introduced Act requiring the development of cybersecurity plans
Description
Introduced Act requiring the development of cybersecurity plans
The Act requiring certain businesses to develop cybersecurity plans and supplementing P.L.1960, c.39 is introduced in New Jersey Senate. The Act requires businesses in financial essential infrastructure and health care industries to develop and implement cybersecurity programs based on regulations adopted by the New Jersey Cybersecurity and Communications Integration Cell (NJCCIC). In particular, the businesses shall comply with industry-recognized cybersecurity frameworks and submit their plans to the NJCCIC.
Original sourceScope
Policy Area
Data governance
Policy Instrument
Cybersecurity regulation
Regulated Economic Activity
other service provider
Implementation Level
subnational
Government Branch
legislature
Government Body
parliament
Key regulatory dimensions
Regulated subjects
The businesses, government agencies or individuals affected by this policy or regulatory change.
producer / supplier
1
Type
Private organisation
Economic activity
other service provider
Category
All
Policy change by business practice
The detailed activities within the scope of this policy or regulatory change.
corporate data (all forms): storage (any form)
Regulatory tool
Risk or other impact assessment requirement
Preventive security requirement
Sanctions
Regulated subjects
1