COLUMBIA, S.C. -
Despite all the attention on computer security in South Carolina after a breach at the state Department of Revenue in 2012, state agencies still aren’t following a consistent computer security plan. A hacker got into the DOR computer system and stole the private information of more than six million taxpayers almost 18 months ago.
The state did beef up security after the breach, and Gov. Nikki Haley issued an executive order in November 2012 requiring her cabinet agencies to have their computer systems monitored around the clock. But the order does not apply to state agencies that are not part of her cabinet.
Sen. Kevin Bryant, R-Anderson, says he was surprised, "When I was told that agencies that didn't necessarily want to comply with the standards don't have to, and that's a serious problem. I'm pleasantly surprised we haven't had a breach since then.”
He says state agencies might all be doing as much as possible to protect your information, but since there’s not one agency overseeing computer security, there’s no way to know what they’re doing.
Since it’s too late in the legislative session to get a bill passed to require all agencies to follow a consistent plan, lawmakers will put language in the budget to require that for one year.
"I can make it very simple for them,” says Sen. Joel Lourie, D-Columbia. “If they want funding from the General Assembly, they're going to participate in data security.”