Aligns state and local procurement laws with federal law prohibiting the procurement of certain technology and electronic parts or products which are determined to pose a risk to state and national security; relates to the authority of the office of information technology services to issue certain guidance relating thereto.
If enacted, S08793 will restrict state agencies and political subdivisions from procuring or renewing contracts for technologies that are prohibited under federal law. This will require state procurement authorities to be vigilant in evaluating the products they acquire, ensuring compliance with a list of restricted technologies. The Office of Information Technology Services will be tasked with developing and regularly updating this list, which will be based on consultations with relevant federal sources, thus centralizing security efforts across various jurisdictions within the state.
S08793 aims to align New York state and local procurement laws with federal regulations that prohibit the procurement of certain technologies and electronic components deemed to pose security threats. This bill specifically addresses the laws and regulations put forth in Public Law 115-232 of 2018, which restricts federal procurement of certain information technology and communications systems. The intent of S08793 is to ensure that state and local authorities do not enter into contracts that could compromise security within the state, thereby advancing the protection of sensitive information and infrastructure.
The bill has sparked debate regarding its implications for local governments and technology providers. Supporters argue that the legislation is necessary to protect the state from security risks associated with foreign-owned technology. Critics, however, might express concern over potential overreach by the state in setting procurement policies that could limit local governments' discretion and impact the workflow of technology vendors. Key discussions may center on the balance between ensuring security and maintaining local autonomy in decision-making processes regarding procurement.
S08793 also mandates the development of guidelines and procedures for agencies to follow, ensuring they are up-to-date with which entities or products are restricted from procurement due to their status as security threats. Additionally, a provision for waivers is included, allowing for exceptions under specific circumstances, which may further complicate procurement practices depending on the situation. Overall, the bill reinforces a state-level commitment to enhancing cybersecurity through strategic legislation.