WeVote

Bill

Bill

HB 235

State Government - Information Technology - Cybersecurity Revisions

2025 Regular Session

Maryland law updates state government cybersecurity standards to strengthen protection against digital threats and modernize IT security protocols across agencies.

Approved by the Governor - Chapter 164
0
WeVote Research Nonpartisan
Bill Summary · HB 235

Legislative bill overview

HB 235 revises Maryland's state government information technology and cybersecurity requirements, establishing updated standards and protocols for state agencies. The bill became law on April 22, 2025, after passing through the legislative process with favorable committee recommendations. It modernizes cybersecurity practices across state IT systems to address evolving digital threats.

Why is this important

State government cybersecurity directly affects the protection of sensitive citizen data, voting systems, and critical infrastructure. Outdated IT security standards expose Maryland to data breaches, ransomware attacks, and operational disruptions that could compromise public services. Modernizing these requirements helps prevent costly breaches and maintains public trust in government digital systems.

Potential points of contention

  • Implementation costs: Agencies may face significant expenses upgrading legacy systems to meet new cybersecurity standards, potentially straining state budgets
  • Compliance timelines: Unclear deadlines for agencies to achieve compliance could create implementation challenges or unfunded mandates
  • Private sector coordination: The bill may require state agencies to work with private contractors on sensitive security matters, raising questions about oversight and data-sharing practices

Compiled from official sources — confirm details with the bill’s official record.

Sign in to ask a question.