Florida Department of Economic Opportunity

The Florida Department of Economic Opportunity (DEO) is a state government agency responsible for administering workforce and reemployment programs for residents of Florida. Its core function involves the operation of the Reemployment Assistance Claims and Benefits Information System, commonly known as CONNECT. This system serves as the primary digital platform for individuals to file claims for unemployment benefits, manage their cases, and access various employment-related services. Through CONNECT, the DEO processes sensitive personal and financial information from claimants, including Social Security numbers, driver's license details, banking information, and employment history, to determine eligibility and disburse benefits. The agency's market is strictly within the state of Florida, serving its labor force and employers by facilitating access to temporary financial assistance during periods of unemployment and connecting job seekers with employment resources. Its operational scope is defined by state law and federal guidelines governing unemployment insurance programs.

A defining characteristic of the DEO's operations is its management of a high-value target for cybercriminals due to the concentration of personally identifiable information (PII) and financial data within the CONNECT system. This reality was starkly evidenced by the data breach disclosed on April 27, 2021, which compromised approximately 58,000 user accounts. The incident resulted in the exposure of a wide array of sensitive data, including Social Security numbers, bank account information, claim details, addresses, phone numbers, dates of birth, and account PINs. The DEO's documented response to this incident—locking affected accounts and implementing enhanced PIN security controls alongside broader network security improvements—highlights a critical aspect of its modern operational competency: the necessity for robust cybersecurity measures to protect public data and maintain system integrity. The agency's role is therefore not only administrative but also inherently tied to the stewardship of confidential information, with its technical and procedural security posture being a significant factor in its public service delivery. The breach and subsequent remediation efforts represent a notable event in the agency's recent history, underscoring the persistent challenges state-level entities face in safeguarding digital service platforms against sophisticated threats.