With the passage of Senate Bill 820 from the 86th Texas Legislature, districts are now required to implement several security measures. Beginning September 1, 2019, districts will need to:
- Designate a security coordinator
- Adopt a cybersecurity policy
- Report any breach of student personally identifiable data to TEA
A district is required to have a cybersecurity policy in order to:
- secure district cyberinfrastructure against cyber attacks and other cybersecurity incidents.
- determine cybersecurity risk and implement mitigation planning.
The policy may not conflict with the information security standards for institutions of higher education adopted by the Department of Information Resources under Chapters 2054 and 2059, Government Code.
The superintendent of each school district must designate someone to be the cybersecurity coordinator for the district to serve as a liaison between the district and the agency in cybersecurity matters.
The cybersecurity coordinator is required to:
- report any breach of the district’s information systems to the agency.
- provide notice to a parent or guardian of a breach that involves a student’s PIA.