Requires adoption and implementation of cybersecurity standards by casinos and sportsbooks; establishes safe gaming certification program.
Impact
The enactment of A5822 significantly impacts the regulatory landscape for gaming operations in New Jersey. By requiring casinos and sportsbooks to develop and maintain high cybersecurity standards, the legislation aims to protect both operators and patrons from cyber threats and data breaches. This act will necessitate ongoing updates to cybersecurity protocols in response to evolving best practices, thereby ensuring that New Jersey's gaming sector remains competitive and secure. The annual audits and the obligation to report any significant cybersecurity incidents within 72 hours underscore the seriousness of maintaining robust defenses against data breaches.
Summary
Assembly Bill A5822, known as the 'Gaming Industry Cybersecurity Act', mandates that casinos and sports wagering licensees in New Jersey adopt and implement robust cybersecurity programs. These programs must adhere to established frameworks created by the National Institute of Standards and Technology or similar standards for information security management. The bill also requires those entities to conduct regular audits of their cybersecurity measures by accredited third-party auditors and to provide training for their employees regarding cybersecurity best practices. Enforcement mechanisms include hefty fines for noncompliance, starting at $10,000 for first offenses and doubling for subsequent violations.
Conclusion
Overall, A5822 represents a forward-thinking approach to cybersecurity within the gaming industry, reflecting the increasing recognition of the need for heightened security measures in the face of growing cyber threats. The legislation not only establishes necessary safeguards but also facilitates the development of a security-aware culture among employees in the casino and gaming sectors.
Contention
There may be concerns regarding the financial burden imposed by the new requirements, especially for smaller operators who might find the cost of compliance and audit burdens to be prohibitive. Additionally, while aimed at enhancing security, some stakeholders may view the extensive government oversight as an encroachment on operational freedoms. The effectiveness of the 'Safe Gaming Seal' program, which certifies businesses that exceed required cybersecurity standards, will also be closely scrutinized to ensure it genuinely reflects superior security practices and is not merely a marketing tool.
Requires Division of Gaming Enforcement to arrange study and implement certain language requirements in gambling advertisements; restricts advertisements and promotions in certain locations.
Requires Division of Gaming Enforcement to arrange study and implement certain language requirements in gambling advertisements; restricts advertisements and promotion in certain locations.
Requires businesses in financial essential infrastructure, and health care industries to develop cybersecurity plans and report cybersecurity incidents.
Relating to matters concerning governmental entities, including cybersecurity, governmental efficiencies, information resources, and emergency planning.
Relating to the establishment of the Texas Cyber Command and the transfer to it of certain powers and duties of the Department of Information Resources.
Relating to the establishment of the Texas Cyber Command as a component institution of The University of Texas System and the transfer to it of certain powers and duties of the Department of Information Resources.
A bill for an act relating to the use of certain technology, including the legal effect of the use of distributed ledger technology or smart contracts and affirmative defenses associated with the use of cybersecurity programs.(See HF 553.)