§672. Duties and functions

            A. The committee may study and examine matters pertaining to information technology of the state and its political subdivisions as deemed appropriate by the committee or the legislature.

            B. The committee may review the needs and performance of the office of technology services and make periodic recommendations to the legislature and the governor regarding the office and the state master information technology plan.

            C.(1) The committee shall assess all cybersecurity risks facing public entities in Louisiana, including the potential likelihood, frequency, and severity of cyberattacks and data breaches. The committee shall work with law enforcement and the office of technology services and develop recommendations and strategies to mitigate the damage to the public relative to those cybersecurity risks.

            (2) The committee shall review cybersecurity investments and expenditures and make recommendations, where appropriate.

            D. The committee may make such continuing study and examination of matters pertaining to the information technology of the state and its agencies, and make reports and recommendations to the legislature as the committee or legislature deems advisable. The committee may make such studies and hold such hearings with respect to information technology as it deems necessary and appropriate to carry out its duties and functions.

            E. Any information received by the committee containing confidential, proprietary, or security sensitive information shall be held confidential and the committee may discuss such information in executive session with appropriate notice in accordance with the Open Meetings Law.

            F. The committee may adopt rules and regulations prescribing and governing its procedures, policies, meetings, and any and all other activities relating to its functions and duties.

            Acts 2020, No. 301, §1.