Return to Homepage


Home   |   Site Map   |   Privacy   |   Contact Us   |   RSS YouTube Twitter Linked In Facebook NASCIO Community
Email This Page     |     Print This Page     |    
Comments?     |     Share This Link

AWARDS & RECOGNITION

2005 Awards: Security and Business Continuity

RECIPIENT:
North Carolina
Statewide Security Initiatives Program

In 2004, North Carolina undertook an assessment of the information technology security posture of its executive branch agencies, identifying areas that needed improvement. The security assessment documented broad areas where security was needed to protect the confidentiality, integrity and availability of the public's data. The cost of improvements recommended totaled $53 million, including $39 million to replace outdated desktops.

"Cybersecurity is one of the most important areas we address in North Carolina. The North Carolina Security and Business Infrastructure project demonstrates that providing security is more than installing firewalls. It is people, policies, planning and taking action where required."
George Bakolia, Chief Information Officer, State of North Carolina To begin addressing the needs identified in the assessment, the North Carolina General Assembly appropriated $3 million for security remediation. The General Assembly also moved to centralize IT security within the Office of the State Chief Information Officer. Using the results from the assessment of executive branch agencies and the available funding, the North Carolina Office of Information Technology Services (ITS) identified six areas which would have broad impact on the information technology security posture of all agencies and have long lasting effects:
  • Improvement of agency border defenses through network redesign and firewalls.
  • Improvement of wireless network security.
  • Expanded risk management and business continuity planning.
  • Completion of statewide security framework (policies, procedures, standards and architecture).
  • Development of a statewide approach to anti-virus/anti-spyware software purchases and licenses.
  • Establishment of enterprise security awareness and training.
As a result of this assessment, every executive branch agency now has undergone a business risk analysis, completed a business continuity plan and been given the opportunity to have a Certified Information Systems Security Professional on staff. In addition, a statewide anti-virus/anti-spyware survey has been conducted, revealing a broad range of pricing for the same or comparable products. Those figures in hand, ITS is now seeking proposals for purchasing licenses for all agencies, a move that should reduce the overall costs of anti-virus/anti-spyware. These initiatives, combined, strengthen the security of the state network, resulting in better protection of state resources.

OTHER NOMINATIONS:
Click on the link to download program submission.

Michigan
Critical IT Protection Solutions

Nevada
Critical Business Technology Assessment Program

Washington
SecureAccess Washington™ Gateway

Return to 2005 Awards Main Page

.

Member of U.S. DOJ's Global Justice Information Sharing Initiative Global Advisory Committee State IT Workforce: Under Pressure NASCIO Connections