WA SB5014

County auditors must implement cybersecurity measures by July 1, 2027, including adopting ".gov" top-level domains for election systems and websites, and partitioning election IT infrastructure from other county networks

Every county must install and maintain 24/7 intrusion detection systems monitored by trained security personnel with access to cyber incident response teams

Voting system manufacturers, county auditors, and IT directors must immediately disclose security breaches or malicious activity to the Secretary of State and Attorney General

Ballot counting equipment and voting systems must be completely isolated from all external networks, including the internet, wifi, wired connections, and internal county networks

All data transfers from voting systems must use single-use, previously erased removable media devices provided by the Secretary of State or sanitized according to state rules