March 30, 2023 - This report satisfies supplemental report language adopted by the Legislature in 2022 on nonreporting entities’ information security (IS) compliance. Among other considerations, this report (1) identifies each of the nonreporting entities based on one statutory interpretation, (2) considers whether some of them could benefit from compliance with and reporting on IS policies and procedures similar to those set by the California Department of Technology, and (3) provides options for the Legislature to consider to improve nonreporting entities’ IS compliance and achieve a certain IS maturity level.
February 28, 2017 - The Governor's budget proposes $14 million total funds across various departments to strengthen information security. In this analysis, we discuss our findings and recommendations regarding the state's approach towards strengthening information security.
March 23, 2023 - This post provides an overview of information security (IS) proposals in the Governor’s 2023-24 budget, including our assessment and recommendations across the proposals and specific to the California Cybersecurity Integration Center (Cal-CSIC).
February 8, 2021 - This post discusses 2021-22 Governor’s Budget proposals for the California Department of Technology to use General Fund to pay the costs of some existing information security programs and services, and to create new programs and services that are intended to improve the delivery of critical state services using information technology (IT) systems and the stability of the state’s legacy IT infrastructure.
November 8, 2023 - This post discusses features of the state's spending plan that were not covered elsewhere in the 2023-24 Spending Plan series.
March 30, 2022 - This post provides background on cybersecurity issues at the California Community Colleges, describes the Governor's proposal to provide funding for various cybersecurity upgrades, assesses the Governor's proposal, and makes associated recommendations.
September 23, 2021 - This post discusses features of the state's spending plan that were not covered elsewhere in the 2021-22 Spending Plan series.
March 17, 2023 - This post provides an overview of the information technology projects in the Governor’s proposed 2023-24 budget, provides our assessment of topics common to several proposals, and offers options for legislative consideration.
May 6, 2019 - In this brief, we provide (1) background on the state’s education data systems and past efforts to connect them, (2) describe the Governor’s proposal to develop an integrated education data system, (3) assess the proposal, and (4) make associated recommendations.
March 27, 2001 - Compliance with the federal Health Insurance Portability and Accountability Act (HIPAA) will require the health care industry to change processes and systems that will result in significant costs. We recommend that the Legislature approve the funding to support HIPAA compliance activities but recommend the enactment of state legislation providing an appropriate policy framework to govern HIPAA compliance activities.
October 7, 2020 - The 2020-21 Budget: California Spending Plan — Other Provisions.
March 28, 2023 - Presented to: Senate Committee on Governmental Organization