- (1) An LEA shall comply with the minimum cybersecurity standards established by the Cybersecurity Commission created in Section 63C-27-201 in rule made in accordance with Subsection 63C-27-202(9).
- (2) An LEA shall comply with the minimum cybersecurity standards according to the phased implementation timeline established in rule under Subsection 63C-27-202(9).
(3) UETN, in consultation with the Cyber Center and the state board, shall:
- (a) develop implementation guidelines and technical resources to assist LEAs in meeting the minimum cybersecurity standards;
- (b) provide technical assistance and support to LEAs; and
- (c) coordinate the provision of cybersecurity services and resources to LEAs.
(4)
(a) The Cyber Center, the state board, and UETN shall coordinate services to LEAs to:
- (i) avoid duplication of efforts;
- (ii) maximize the effectiveness of cybersecurity resources;
- (iii) ensure LEAs receive consistent guidance and support; and
- (iv) facilitate information sharing regarding cybersecurity threats and best practices.
(b) The coordination required under Subsection (4)(a) shall include:
- (i) regular meetings among the entities to discuss LEA cybersecurity needs and initiatives;
- (ii) joint development of training materials and resources;
- (iii) coordinated response to cybersecurity incidents affecting LEAs; and
- (iv) alignment of cybersecurity standards and network infrastructure requirements.
Enacted by Chapter 170, 2026 General Session