FRANKFORT, Ky. (AP) — Kentucky’s auditor has released a report outlining the threats of cybersecurity breaches to state and local governments.
In his report, Auditor Adam Edelenemphasizes the need for a breach notification law. He says Kentucky is one of four states that don’t require government agencies to notify people if their sensitive data has been compromised.
State and local governments collect and store massive amounts of private and sensitive data.
Edelen says he plans to work with state lawmakers in hopes of getting a breach notification bill passed next year.
The auditor’s office has a role in monitoring the ability of state and local governments to protect sensitive information. The office has a team of IT auditors that test security controls when the auditor’s office is conducting state and local government audits.