Presentation is loading. Please wait.

Presentation is loading. Please wait.

 National association Pamela Walker, Director of Government Affairs National Association of State Chief Information Officers NLC Congressional City Conference:

Published byNeil Olding Modified over 9 years ago

Similar presentations

Presentation on theme: " National association Pamela Walker, Director of Government Affairs National Association of State Chief Information Officers NLC Congressional City Conference:"— Presentation transcript:

1  National association Pamela Walker, Director of Government Affairs National Association of State Chief Information Officers NLC Congressional City Conference: Status of Cybersecurity with States and Congress

2 Fiscal recovery uneven, slow revenue growth, budgets are better, federal deficit reduction impact? CIOs seeking IT operational cost savings and alternative IT sourcing strategies Opportunities for change and innovation Living with the past - modernizing the legacy IT security and risk! Game has changed IT workforce: retirement wave, skills, recruiting State CIO positions – major churn State IT Landscape Today

3 CIO Priorities, Trends and Perspectives

4 State CIO Priorities for 2012 1. Consolidation / Optimization: consolidating infrastructure and services, centralizing 2. Budget and Cost Control: managing budget reduction, strategies for savings 3. Governance: improving IT governance, authority, data governance, partnering, collaboration 4. Health Care: Affordable Care Act, health information and insurance exchanges, architecture, partnering, implementation, technology solutions, Medicaid systems 5. Cloud Computing: governance, service management, service catalogs, platform, infrastructure, security, privacy, data ownership, legal issues, vendor management 6. Security: risk assessment, governance, budget and resource requirements; security frameworks, data protection, training and awareness, insider threats, third party security 7. Broadband and Connectivity: strengthening statewide connectivity, public safety wireless network/interoperability, implementing BTOP grant 8. Shared Services: business models, sharing resources, services, infrastructure, independent of organizational structure, service portfolio management 9. Portal: maturing state portal, e-government, single view of the customer/citizen, emphasis on citizen interactive self-service, mobile apps, accessibility 10. Mobile Services/Mobility: devices, applications, workforce, security, policy issues, support, ownership, communications, wireless infrastructure Source: NASCIO State CIO Survey, October 2011

5 Cybersecurity in the States  Critical infrastructure protection  More aggressive threats – organized crime, unorganized crime, hacktivism  Spam, phishing, hacking, and network probes up  Data breaches – trust impact  Insider threats, third party  Executive support  Inadequate funding  Need more training, awareness

6 Growing IT Security Risks in the States  Protecting legacy systems  Expansion of wireless networks  Adoption of cloud services  Online transactions  Use of social media platforms  Mobile devices and services  Use of personally-owned devices (BYOD)  Miscellaneous devices (USB, digital cameras, MP3 players, etc.)  Third-party contractors and managed services

7 What are your State’s top five IT security initiatives? 1. Data Protection 2. Information Security Risk Assessments 3. Information Security Training and Awareness 4. Application Security 5. Information Security Measurement and Reporting

8 What major barriers does your State face in addressing information security?

9 Today’s State IT Workforce: Under Pressure  State CIOs say 21 - 30 % of state IT employees eligible for retirement within the next five years  Fiscal stress - hiring freezes and elimination of vacant positions  Nearly two-thirds say they anticipate having to reduce IT staff  IT Security positions are difficult to recruit and retain

10 Challenges Recruiting IT Security Professionals Source: NASCIO State IT Workforce: Under Pressure, January 2011

11 Business objectives GovernanceAcquisition strategyJurisdictional issues Security and privacy concerns Policy and legal issuesExit strategy

12 Social Media: Connecting Citizens, Presenting Risks securitylegal issues with Terms of Serviceprivacyrecords managementacceptable use Social media adoption rates are broad across state governments - 98% use free social media tools on hosted, third party platforms. Social media pose challenges to states in the areas of:

13 NASCIO Cybersecurity Call to Action Key Questions for State Leaders  Have you created a culture of information security in your state government?  Have you adopted a cybersecurity framework, based on national standards & guidelines?  Have you acquired continuous vulnerability management capabilities?  Have you documented the effectiveness of your cybersecurity with metrics and testing?  Have you developed security awareness training for workers and contractors?

14 Looking Ahead  More IT consolidation, shared services  Outsourcing: more steering, less rowing  IT implications of healthcare reform  Demand for performance, results  Extending the enterprise: locals?  Massive collaboration - Web 2.0  DHS, MS-ISAC and NASCIO collaboration – NCSR  More intra-state and inter-state collaboration; state homeland security advisors  State Centers of Excellence for cyber education & research  Funded research, scholarships, internships  Sharing best practices, recognition Looking Ahead: Leveraging State Assets

15 More Administrative Flexibility Needed for States Secure and Protect Citizen Data and State Digital Assets Support the Adoption and Expansion of the National Information Exchange Model (NIEM) Support State Role in Identity Management and Verification Solutions NASCIO 2012 Federal Advocacy Priorities

16 Congress and Cybersecurity  The Cybersecurity Act of 2012 (S. 2105) introduced by Sens. Lieberman and Collins  Strengthening and Enhancing Cybersecurity by Using Research, Education, Information, and Technology Act of 2012 or ‘‘SECURE IT” (S. 2151) introduced by Sen. McCain  Focus on critical infrastructure, information sharing, FIMSA reform, cyber workforce and international cooperation.  House taking a piecemeal approach.

17 Connect with... youtube.com/nasciomedia linkedin.com facebook.com twitter.com/nascio nascio.org

Download ppt " National association Pamela Walker, Director of Government Affairs National Association of State Chief Information Officers NLC Congressional City Conference:"

Similar presentations

Manatt manatt | phelps | phillips New York State Health Information Technology Summit Initiative Overview and Update Rachel Block, Project Director United.

Manatt manatt | phelps | phillips New York State Health Information Technology Summit Initiative Overview and Update Rachel Block, Project Director United.
Impacts of 3 rd Party IaaS on broadband network operations and businesses Prabhat Kumar Managing Partner, i 3 m 3 Solutions.

Impacts of 3 rd Party IaaS on broadband network operations and businesses Prabhat Kumar Managing Partner, i 3 m 3 Solutions.
Cybersecurity Update December 5, 2012. Agenda Cybersecurity – A growing problem Cybersecurity in other states (NASCIO/Deloitte Study) Structure Challenges.

Cybersecurity Update December 5, Agenda Cybersecurity – A growing problem Cybersecurity in other states (NASCIO/Deloitte Study) Structure Challenges.
Shared Technical Infrastructure Bill Willis Deputy State CIO ITAB Meeting 12/2/2005.

Shared Technical Infrastructure Bill Willis Deputy State CIO ITAB Meeting 12/2/2005.
Information Resources In Transition… Adding Value… Making a Difference University of Scranton – IT Forum February 14, 2013.

Information Resources In Transition… Adding Value… Making a Difference University of Scranton – IT Forum February 14, 2013.
CUPA-HR Strong – together!

CUPA-HR Strong – together!
Mobility in Government Consolidation & Wrap-up Lee Naik3 Oct 2013.

Mobility in Government Consolidation & Wrap-up Lee Naik3 Oct 2013.
Doug Couto Information Systems and Technology Committee (ABJ50) Washington, DC January 25, 2011.

Doug Couto Information Systems and Technology Committee (ABJ50) Washington, DC January 25, 2011.
Institutional Transformation of Government in the Network Society Jane E. Fountain Director, National Center for Digital Government Harvard University.

Institutional Transformation of Government in the Network Society Jane E. Fountain Director, National Center for Digital Government Harvard University.
Current impacts of cloud migration on broadband network operations and businesses David Sterling Partner, i 3 m 3 Solutions.

Current impacts of cloud migration on broadband network operations and businesses David Sterling Partner, i 3 m 3 Solutions.
BENEFITS OF SUCCESSFUL IT MODERNIZATION

BENEFITS OF SUCCESSFUL IT MODERNIZATION
Private Sector Perspectives on Federal Financial Systems Modernization and Shared Services.

Private Sector Perspectives on Federal Financial Systems Modernization and Shared Services.
David A. Brown Chief Information Security Officer State of Ohio

David A. Brown Chief Information Security Officer State of Ohio
State IT Priorities and Trends: Collaborating with Your State CIO SERI Institute July 9, 2013 Doug Robinson, Executive Director National Association of.

State IT Priorities and Trends: Collaborating with Your State CIO SERI Institute July 9, 2013 Doug Robinson, Executive Director National Association of.
Keystone Technology Plan Presentation to Chesapeake Bay Program Information Management Subcommittee May 19, 2004 Nancie L. Imler Chief Information Officer.

Keystone Technology Plan Presentation to Chesapeake Bay Program Information Management Subcommittee May 19, 2004 Nancie L. Imler Chief Information Officer.
Identity, Privacy, and Security: Higher Education Policy and Practice Rodney Petersen Government Relations Officer Director of Cybersecurity Initiative.

Identity, Privacy, and Security: Higher Education Policy and Practice Rodney Petersen Government Relations Officer Director of Cybersecurity Initiative.
PPA 573 – Emergency Management and Homeland Security Lecture 9b - Department of Homeland Security Strategic Plan.

PPA 573 – Emergency Management and Homeland Security Lecture 9b - Department of Homeland Security Strategic Plan.
Chapter 10 Information Systems Management. Agenda Information Systems Department Plan the Use of IT Manage Computing Infrastructure Manage Enterprise.

Chapter 10 Information Systems Management. Agenda Information Systems Department Plan the Use of IT Manage Computing Infrastructure Manage Enterprise.
Symantec Vision and Strategy for the Information-Centric Enterprise Muhamed Bavçiç Senior Technology Consultant SEE.

Symantec Vision and Strategy for the Information-Centric Enterprise Muhamed Bavçiç Senior Technology Consultant SEE.
Thought Leaders Retreat September 23, 2008.  Talent shortages already exist in many areas of the global workforce  Effectively handling organizational.

Thought Leaders Retreat September 23,  Talent shortages already exist in many areas of the global workforce  Effectively handling organizational.

Similar presentations

Ads by Google