RCW 43.105.020
Definitions.
The definitions in this section apply throughout this chapter unless the context clearly requires otherwise.
(1) "Agency" means the consolidated technology services agency.
(2) "Board" means the technology services board.
(3) "Cloud computing" has the same meaning as provided by the special publication 800-145 issued by the national institute of standards and technology of the United States department of commerce as of September 2011 or its successor publications.
(4) "Customer agencies" means all entities that purchase or use information technology resources, telecommunications, or services from the consolidated technology services agency.
(5) "Director" means the state chief information officer, who is the director of the consolidated technology services agency.
(6) "Enterprise architecture" means an ongoing activity for translating business vision and strategy into effective enterprise change. It is a continuous activity. Enterprise architecture creates, communicates, and improves the key principles and models that describe the enterprise's future state and enable its evolution.
(7) "Equipment" means the machines, devices, and transmission facilities used in information processing, including but not limited to computers, terminals, telephones, wireless communications system facilities, cables, and any physical facility necessary for the operation of such equipment.
(8) "Information" includes, but is not limited to, data, text, voice, and video.
(9) "Information security" means the protection of communication and information resources from unauthorized access, use, disclosure, disruption, modification, or destruction in order to:
(a) Prevent improper information modification or destruction;
(b) Preserve authorized restrictions on information access and disclosure;
(c) Ensure timely and reliable access to and use of information; and
(d) Maintain the confidentiality, integrity, and availability of information.
(10) "Information technology" includes, but is not limited to, all electronic technology systems and services, automated information handling, system design and analysis, conversion of data, computer programming, information storage and retrieval, telecommunications, requisite system controls, simulation, electronic commerce, radio technologies, and all related interactions between people and machines.
(11) "Information technology portfolio" or "portfolio" means a strategic management process documenting relationships between agency missions and information technology and telecommunications investments.
(12) "K-20 network" means the network established in RCW 43.41.391.
(13) "Local governments" includes all municipal and quasi-municipal corporations and political subdivisions, and all agencies of such corporations and subdivisions authorized to contract separately.
(14) "Office" means the office of the state chief information officer within the consolidated technology services agency.
(15) "Oversight" means a process of comprehensive risk analysis and management designed to ensure optimum use of information technology resources and telecommunications.
(16) "Proprietary software" means that software offered for sale or license.
(17) "Public agency" means any agency of this state or another state; any political subdivision or unit of local government of this state or another state including, but not limited to, municipal corporations, quasi-municipal corporations, special purpose districts, and local service districts; any public benefit nonprofit corporation; any agency of the United States; and any Indian tribe recognized as such by the federal government.
(18) "Public benefit nonprofit corporation" means a public benefit nonprofit corporation as defined in RCW 24.03A.245 that is receiving local, state, or federal funds either directly or through a public agency other than an Indian tribe or political subdivision of another state.
(19) "Public record" has the definitions in RCW 42.56.010 and chapter 40.14 RCW and includes legislative records and court records that are available for public inspection.
(20) "Public safety" refers to any entity or services that ensure the welfare and protection of the public.
(21) "Security incident" means an accidental or deliberative event that results in or constitutes an imminent threat of the unauthorized access, loss, disclosure, modification, disruption, or destruction of communication and information resources.
(22) "State agency" means every state office, department, division, bureau, board, commission, or other state agency, including offices headed by a statewide elected official.
(23) "Telecommunications" includes, but is not limited to, wireless or wired systems for transport of voice, video, and data communications, network systems, requisite facilities, equipment, system controls, simulation, electronic commerce, and all related interactions between people and machines.
(24) "Utility-based infrastructure services" includes personal computer and portable device support, servers and server administration, security administration, network administration, telephony, email, and other information technology services commonly used by state agencies.
[ 2021 c 176 § 5223; 2021 c 40 § 2; 2017 c 92 § 2; 2016 c 237 § 2. Prior: 2015 3rd sp.s. c 1 § 102; 2011 1st sp.s. c 43 § 802; 2010 1st sp.s. c 7 § 64; prior: 2009 c 565 § 32; 2009 c 509 § 7; 2009 c 486 § 14; 2003 c 18 § 2; prior: 1999 c 285 § 1; 1999 c 80 § 1; 1993 c 280 § 78; 1990 c 208 § 3; 1987 c 504 § 3; 1973 1st ex.s. c 219 § 3; 1967 ex.s. c 115 § 2.]
NOTES:
Reviser's note: This section was amended by 2021 c 40 § 2 and by 2021 c 176 § 5223, each without reference to the other. Both amendments are incorporated in the publication of this section under RCW 1.12.025(2). For rule of construction, see RCW 1.12.025(1).
Effective date—2021 c 176: See note following RCW 24.03A.005.
Findings—Intent—2021 c 40: See note following RCW 43.105.375.
Short title—2016 c 237: "This act may be known and cited as the cybersecurity jobs act of 2016." [ 2016 c 237 § 5.]
Effective date—2015 3rd sp.s. c 1 §§ 101-109, 201-224, 406-408, 410, 501-507, 601, and 602: See note following RCW 43.105.007.
Effective date—Purpose—2011 1st sp.s. c 43: See notes following RCW 43.19.003.
Effective date—2010 1st sp.s. c 26; 2010 1st sp.s. c 7: See note following RCW 43.330.400.
Findings—Intent—Purpose—Effective date—2009 c 509: See notes following RCW 43.330.400.
Conflict with federal requirements—Intent—2009 c 486: See notes following RCW 28B.30.530.
Intent—Finding—2003 c 18: "It is the intent of the legislature to ensure that the state's considerable investment in radio communications facilities, and the radio spectrum that is licensed to government entities in the state, are managed in a way that promotes to the maximum extent the health and safety of the state's citizens and the economic efficiencies of coordinated planning, development, management, maintenance, accountability, and performance. The legislature finds that such coordination is essential for disaster preparedness, emergency management, and public safety, and that such coordination will result in more cost-effective use of state resources and improved government services." [ 2003 c 18 § 1.]
Effective date—2003 c 18: "This act is necessary for the immediate preservation of the public peace, health, or safety, or support of the state government and its existing public institutions, and takes effect July 1, 2003." [ 2003 c 18 § 6.]
Effective date—1993 c 280: See RCW 43.330.902.
Effective date—1967 ex.s. c 115: "This act is necessary for the immediate preservation of the public peace, health and safety, the support of the state government and its existing public institutions, and shall take effect July 1, 1967." [ 1967 ex.s. c 115 § 8.]
Structure Revised Code of Washington
Title 43 - State Government—Executive
Chapter 43.105 - Consolidated Technology Services Agency.
43.105.006 - Consolidated technology services agency—Purpose.
43.105.025 - Agency created—Appointment of director—Director's duties.
43.105.052 - Powers and duties of agency.
43.105.054 - Governing information technology—Standards and policies—Powers and duties of office.
43.105.057 - Rule-making authority.
43.105.060 - Contracts by state and local agencies with agency.
43.105.111 - Performance targets—Plans for achieving goals—Quarterly reports to governor.
43.105.205 - Office of the state chief information officer—Created—Powers, duties, and functions.
43.105.220 - Strategic information technology plan—Biennial performance reports.
43.105.225 - Managing information technology as a statewide portfolio.
43.105.230 - State agency information technology portfolio—Basis for decisions and plans.
43.105.235 - State agency information technology portfolio—Exemptions.
43.105.240 - Evaluation of agency information technology spending and budget requests.
43.105.245 - Planning, implementation, and evaluation of major projects—Standards and policies.
43.105.255 - Major technology projects and services—Approval.
43.105.285 - Technology services board—Created—Composition.
43.105.287 - Technology services board—Powers and duties.
43.105.331 - State interoperability executive committee—Composition—Responsibilities.
43.105.341 - Information technology portfolios.
43.105.351 - Electronic access to public records—Findings—Intent.
43.105.355 - Electronic access to public records—Costs and fees.
43.105.365 - Accuracy, integrity, and privacy of records and information.
43.105.369 - Office of privacy and data protection.
43.105.375 - Use of state data center or commercial cloud computing services—Exceptions.
43.105.385 - Agency as central service provider for state agencies.
43.105.460 - Office of cybersecurity—Catalog of services and functions—Report.
43.105.470 - Office of cybersecurity—Major cybersecurity incidents—Reporting duties.
43.105.825 - K-20 network—Oversight—Coordination of telecommunications planning.
43.105.904 - Actions of telecommunications oversight and policy committee—Savings—1999 c 285.
43.105.905 - Construction—2008 c 262.