NJ S3137

All New Jersey government entities must conduct internal reviews of their cybersecurity infrastructure, including municipalities, counties, school districts, state executive branch departments, agencies, and state colleges and universities.

Reviews must evaluate the efficiency and security of current cyber infrastructure and identify high-risk cybersecurity issues facing each entity.

Government entities must develop strategies for improving and modernizing cybersecurity infrastructure, including computer systems, networks, software, and hardware programs.

Each entity must propose changes to existing laws, regulations, or policies concerning cybersecurity that they find appropriate to modify.

Findings and recommendations from the internal reviews must be reported to the Governor and Legislature within 45 days of the bill's effective date.