800.247.9045
support@bisconsultants.com

What HB 150 Means for Local Governments – And How BIS Is Preparing for You 

The Texas Legislature recently passed House Bill 150, establishing the Texas Cyber Command as the state’s central authority for cybersecurity. This bill shifts many responsibilities away from the Department of Information Resources (DIR) and creates new requirements for local governments, including appraisal districts, tax offices, cities, and other entities BIS serves every day. 

At BIS, we know legislation like this can feel overwhelming. Here’s what you need to know, and how we’re already preparing to make compliance simple for you. 

Whos HB 150 Affects 

HB 150 reaches beyond IT teams and touches many roles across local government, including:

  • City Managers and County Commissioners
  • Chief Appraisers and Tax Office Leaders
  • CIOs, CISOs, and IT Directors
  • Procurement Officers and University Leadership
  • Staff with system access who must complete annual training

Cybersecurity is becoming a shared responsibility across leadership and staff alike.

What HB 150 Does 

  • Creates the Texas Cyber Command – a new state agency dedicated to preventing and responding to cybersecurity incidents. 
  • Requires Mandatory Reporting – local governments must report cybersecurity incidents to the Command within 48 hours of discovery and follow up with detailed reporting. 
  • Sets Standards & Training – the Command will define minimum cybersecurity standards and certify training programs that must be completed annually by government employees with system access. 
  • Requires Regular Assessments – every two years, agencies must undergo security assessments and penetration testing by the Command or a Command-approved vendor. 
  • Increases Oversight – the Command will coordinate incident response, issue policies, and hold local governments accountable for compliance. 

What This Means for Your Office 

  1. New Compliance Pressure – cybersecurity will no longer be optional “best practice.” It’s required, monitored, and enforced. 
  2. Faster Incident Response – your office must be ready to report and respond within hours of an event. 
  3. Training Requirements – staff who touch systems or sensitive information must complete certified training programs every year. 
  4. Testing & Audits – you should expect penetration tests, vulnerability scans, and audits every two years. 

How BIS Is Supporting You 

At BIS, our mission has always been to give local governments the tools, expertise, and support to operate like a modern tech company. HB 150 doesn’t change that; it strengthens the need for it. Here’s how we’re stepping up: 

  • Compliance Guidance – Our IT team is reviewing HB 150 line by line to ensure our services align with the new state standards. 
  • Training Solutions – We will be offering Texas-certified cybersecurity training so your staff can stay compliant. Check out our training Here. 
  • Incident Response Support – Our Advanced Security Solutions are separate from IT Maintenance. Contact us today to learn how we can protect and respond when incidents happen. 
  • Audit & Assessment Preparation – With IT Maintenance  we help you stay up to date with critical updates and security patches while our Backup solutions help protect your data so you’re always prepared. 
  • Clear Communication – As the Command releases rules, we’ll keep you updated with explanations and action steps. 

Our Commitment 

We’ll continue to send updates, tools, and guidance as HB 150 rolls out. In the meantime, if you have questions about how this impacts your office, our team is here to help. 

👉 Contact BIS today to learn how we can make sure your office is secure, compliant, and ahead of the curve.