CLOUD MIGRATION TO BOOST CYBERSECURITY
With House Bill 1491, Mississippi state leaders hope to make a significant move to modernize state IT infrastructure, by creating a Cloud Center of Excellence within the Mississippi Department of Information Technology Services. The center would help simplify cloud adoption, enhance security and optimize costs across state agencies.
The bill lays out a five-year plan for transitioning state agencies and local governments to cloud services, with specific milestones set for 2026 to 2030. The phased approach begins with readiness assessments and cloud migration plans for select agencies, followed by pilot migrations and gradual expansion across the state. All agencies are expected to be migrated to the cloud by 2030, supported by continuous training, security assessments and monitoring, according to the bill.
Craig Orgeron, Mississippi’s state chief information officer, told Government Technology the initiative is a cornerstone of the state’s IT strategy, with the potential to drive significant monetary savings for government agencies.
“The establishment of the Cloud Center of Excellence (CCOE) represents a strategic step forward in modernizing Mississippi’s IT infrastructure,” Orgeron said. “By providing a centralized framework for cloud adoption, governance and security, this initiative will enhance efficiency, improve scalability and drive cost savings across state agencies.”
The bill passed the House and has moved on to a Senate committee for approval. If passed it is set to take effect July 1.
The state is hoping to advance its cybersecurity capabilities too, via the Mississippi Statewide Data Exchange Act. Also known as state Senate Bill 2267, the act aims to improve how state agencies share data while maintaining security protocols.
The legislation would create a cloud-based platform for sharing information between state agencies; its impact is expected to be consequential for residents and business owners, the CIO said.
“The Mississippi Statewide Data Exchange Act is a critical step toward modernizing how state agencies share and utilize data,” Orgeron said. “By creating a secure, cloud-based platform for interagency data exchange, this initiative will greatly improve service delivery for citizens and businesses.”
The bill would also establish a CIO Council of IT leaders from state agencies, to guide the statewide data initiative. They would be charged with recommending best practices for interoperability frameworks and cybersecurity protocols; and ensuring the exchange supports agency-specific needs and broader statewide strategies for digital government services. The council, Orgeron said, would provide strategic oversight, promote collaboration and interoperability, and help maintain strict security and privacy standards.
“This bill lays the foundation for a more connected and data-driven state government, ultimately benefiting all Mississippians,” he said.
SB 2267 passed the state Senate and is being considered by the House. It, too, would take effect July 1 if enacted.
STANDARDIZING STATE CYBERSECURITY POLICY
Lawmakers in the Hoosier State have introduced state Senate Bill 0472, to bolster cybersecurity across Indiana’s public-sector organizations, schools and government entities. The bill mandates the adoption of standardized cybersecurity policies by all political subdivisions, state agencies, school corporations and public universities by Dec. 31, 2027. It would also create a Cybersecurity Insurance Program to help Indiana government entities recover from cyber attacks, with financial protection and expert support.
The legislation directs fines collected from data breaches and privacy violations to be used to fund a cybersecurity trust, to increase accountability for data protection failures and standardize training across all state entities.
If it passes the House and clears the governor’s desk, many provisions in the bill would take effect July 1.
STATEWIDE DATA ENCRYPTION PILOT
Arizona is taking steps to protect digital infrastructure with House Bill 2736, which would introduce several measures to strengthen cybersecurity. Key provisions include mandatory security assessments for state agencies purchasing tech products, and a seven-year pilot program to implement data encryption and cybersecurity upgrades across major government departments.
The bill outlines a long-term plan for statewide data encryption, including strict security criteria and regular audits to ensure encryption systems remain effective against evolving threats. It would also require annual security audits, with reports to be submitted to the state Legislature to ensure transparency and accountability.
Its pilot program, which would begin in 2026 and run through 2030, would cover a wide range of state departments, from the Secretary of State’s office to the Legislature. The bill is likely to pass the House with amendments.
NEW CYBER INFRASTRUCTURE OFFICE
In New Jersey, state Senate Bill 3835 would centralize cybersecurity efforts in the Office of Cybersecurity Infrastructure. This new office would oversee cyber operations across state agencies, municipalities, counties and school districts to protect systems and integrate artificial intelligence (AI) tools.
The office would coordinate cybersecurity efforts, manage technology security and ensure AI implementation meets security policies. It would be led by a director, appointed by the governor with state Senate approval required. The director would be responsible for working with private companies and public entities to strengthen cyber defense.
SB 3835 has been referred to the Senate Budget and Appropriations Committee; if approved by lawmakers and enacted, it would take effect immediately.
