North Carolina § 143B-1378 Assessment of agency compliance with cybersecurity standards

North Carolina Statutes

§ 143B-1378 — Assessment of agency compliance with cybersecurity standards

North Carolina § 143B-1378

Ch. 143BExecutive Organization Act of 1973

Art. 15Department of Information Technology

This text of North Carolina § 143B-1378 (Assessment of agency compliance with cybersecurity standards) is published on Counsel Stack Legal Research, covering North Carolina primary law. Counsel Stack provides free access to over 12 million legal documents including statutes, case law, regulations, and constitutions.

Bluebook

N.C. Gen. Stat. § 143B-1378 (2026).

Text

At a minimum, the State CIO shall annually assess the ability of each State agency, and each agency's contracted vendors, to comply with the current cybersecurity enterprise-wide set of standards established pursuant to this section. The assessment shall include, at a minimum, the rate of compliance with the enterprise-wide security standards and an assessment of security organization, security practices, security information standards, network security architecture, and current expenditures of State funds for information technology security. The assessment of a State agency shall also estimate the initial cost to implement the security measures needed for agencies to fully comply with the standards as well as the costs over the lifecycle of the State agency information system. Each State 

Free access — add to your briefcase to read the full text and ask questions with AI

At a minimum, the State CIO shall annually assess the ability of each State agency, and each agency's contracted vendors, to comply with the current cybersecurity enterprise-wide set of standards established pursuant to this section. The assessment shall include, at a minimum, the rate of compliance with the enterprise-wide security standards and an assessment of security organization, security practices, security information standards, network security architecture, and current expenditures of State funds for information technology security. The assessment of a State agency shall also estimate the initial cost to implement the security measures needed for agencies to fully comply with the standards as well as the costs over the lifecycle of the State agency information system. Each State agency shall submit information required by the State CIO for purposes of this assessment. The State CIO shall include the information obtained from the assessment in the State Information Technology Plan. (2015-241, s. 7A.2(b); 2019-200, s. 6(g).)