Local Governments Required to Complete Cybersecurity Training
The 86th Legislature passed House Bill (HB) 3834 requiring state and local government employees to annually complete a certified cybersecurity training. Texas Department of Information Resources (DIR) in consultation with the Texas Cybersecurity Council is required to certify at least five cybersecurity training programs for state and local government employees.
Statewide Training Requirements: Annual training must be completed by June 14, 2020 by the following employees:
State Agencies: Employees who use a computer to complete at least 25 percent of the employee’s required duties and elected or appointed officers of the agency.
Local Government Entities: Employees who have access to a local government computer system or database, and elected officials.
Contractors of state agencies who have access to a state computer system or database must complete training during the term of the contract and during any renewal period.
If your organization is currently using a cybersecurity training program check the list of certified programs to see if it has been certified.
If it has, continue using that program to meet the requirements of HB 3834. Make note of the modules listed with the certified program and make sure you are including these in your program.
If it has not, first, make sure your program has been submitted for certification. (If it’s a 3rd party program, check with the vendor.) Second, continue to monitor the list of certified programs as additional programs will be added as they are certified.
If your organization is not currently using a cybersecurity training program:
Review the list of certified programs to find one that meets your needs.
Contact the point of contact for instructions on:
- how to access the training program (if you selected an in-house program that the organization is willing to share), or
- how to procure the training program (if you selected a 3rd party program).
All mandated state and local employees and elected officials are required to complete annual cybersecurity training by June 14, 2020. Vendors providing services to state agencies, under certain conditions, are also required to complete cybersecurity training.
For questions or further information about HB 3834 and the certification process, please contact TXTrainingCert@dir.texas.gov or you can visit the Texas Department of Information Resources website at https://dir.texas.gov/View-About-DIR/Information-Security/Pages/Content.aspx?id=154.