Biscayne Park explores cybersecurity assessment after state rule reminders
Loading...
Summary
Commissioners discussed Florida cybersecurity requirements and instructed staff to pursue a targeted risk assessment (manager pursuing FIU contact); IT staff said most village systems are cloud-hosted and vendor-protected but recommended a report on gaps and costs.
Cybersecurity drew commissioners’ attention on Feb. 3 after Vice Mayor Veronica Amsler described a League of Cities session and cited statutory requirements for local-government cybersecurity (referenced in the meeting as "Florida statute 282.3185"). Amsler asked staff to assess the village’s compliance, pursue a targeted risk assessment, explore grant funding and return with finance and recommendation options.
Village IT staff told the commission the village is a small municipal operation with many systems hosted in the cloud and protected by vendors, and noted that the risk profile differs from larger jurisdictions such as North Miami. Manager Al Childress said he had discussed a possible risk assessment with FIU’s cybersecurity division and expected to schedule a meeting to see whether FIU could perform a targeted assessment, potentially at low or no cost under an academic/public-service arrangement.
Commissioners asked staff to return with an assessment of statutory compliance, a targeted risk assessment recommendation, estimated costs and possible grant sources or training options. The IT lead agreed to draft a report on existing protections, recommended improvements, and cost estimates for any third-party remediation or testing.
