NASCIO Resources

2012 Deloitte-NASCIO Cybersecurity Study State governments at Risk: A Call for Collaboration and Compliance

  • October 2012
  • Number of views: 7047
2012 Deloitte-NASCIO Cybersecurity Study State governments at Risk: A Call for Collaboration and Compliance

This study reports findings and analysis of a comprehensive survey of State Chief Information Security Officers conducted by NASCIO in partnership with Deloitte in July and August of 2012. Both a repeat and extension of a Deloitte-NASCIO survey originally conducted in 2010, it documents the relative strengths and weaknesses of the security programs that protect state governments' vital systems and data. The study identifies areas of concern expressed by state CISOs, and provides a call to action for state CIOs and policy officials on the critical need to support and enhance cybersecurity programs.

NASCIO Cyber Security Awareness Resource Guide

  • October 2012
  • Number of views: 7120
NASCIO Cyber Security Awareness Resource Guide

For the 2012 observance of National Cyber Security Awareness Month, NASCIO has updated its Resource Guide for State Cyber Security Awareness, Education, and Training Initiatives. The guide includes new information from our state members, who provided examples of state awareness programs and initiatives. This is an additional resource of best-practice information, together with an interactive state map to allow users to drilldown to the actual resources that states have developed or are using to promote cyber awareness. It includes contact information for the CISO, hyperlinks to state security and security awareness pages, and information describing cyber security awareness, training, and education initiatives.

The State Identity Credential and Access Management Guidance and Roadmap (SICAM)

  • September 2012
  • Number of views: 17411
The State Identity Credential and Access Management Guidance and Roadmap (SICAM)
The State Identity and Credential Access Management (SICAM) Guidance and Roadmap outline a strategic vision for state-based identity, credential, and access management efforts, and emphasizes the importance of implementing the SICAM architecture and services in support of the challenges associated with trust, interoperability, security, and process improvement. States can, and should, provide a secure, auditable environment for the processing and exchange of information across the entire spectrum of state business. This guidance promotes an enterprise approach and it is essential that state governments take the initiative to ensure the integrity of the data entrusted to them and provide a high level of security and privacy to citizens, customers, and partners.

Capitals in the Clouds Part IV – Cloud Security: On Mission and Means

  • April 2012
  • Number of views: 15405
Capitals in the Clouds Part IV – Cloud Security: On Mission and Means

This brief presents an emphasis on the cultural and organizational aspects of cloud computing. "Cloud services" imply shared services. When agencies come together to share such a resource there will necessarily have to be an evaluation of the variance in security policies in place in the various partner agencies. Engaging external cloud services can be quite risky if such services have not been properly vetted by state security staff. Much education, awareness, and ongoing communication will be required to ensure state government employees are fully aware of the risks of external cloud services. The imperative for states is to stay connected and maintain the dialogue, sharing intentions and solutions, as state government moves forward with adoption of cloud services. Cloud is not the only solution or avenue for sharing resources. When it is the right solution, it must be employed with proper attention to the security aspects of cloud services, particularly with external cloud services.

Capitals in the Clouds Part III – Recommendations for Mitigating Risks: Jurisdictional, Contracting and Service Levels

  • December 2011
  • Number of views: 15374
Capitals in the Clouds Part III – Recommendations for Mitigating Risks: Jurisdictional, Contracting and Service Levels

Cloud computing will continue to be an invaluable resource for state and local governments in their efforts to rationalize and optimize computing resources. Cloud computing should be seen as an IT innovation that can support rationalization and optimization of business services as well as IT services. Due diligence prescribes the necessity of exploring and evaluating jurisdictional issues in order to ensure long term sustainability and growing adoption of collaborative government operations in state and local government.

The Heart of the Matter: A Core Services Taxonomy for State IT Security Programs

  • October 2011
  • Number of views: 7587
The Heart of the Matter: A Core Services Taxonomy for State IT Security Programs
To ensure that IT security remains robust in the current difficult budget environment, the National Association of State Chief Information Officers (NASCIO) has identified a taxonomy of core, critical IT security services to facilitate the analysis of requirements, sourcing options, and costs for delivering appropriate security. For each of the twelve services that were identified, the brief includes a description, a list of the key activities associated with the service, and a list of tools that commonly support service delivery.

State CIO Top Ten Policy and Technology Priorities for 2012

  • October 2011
  • Number of views: 8109
State CIO Top Ten Policy and Technology Priorities for 2012
Each year NASCIO conducts a survey of the state CIOs to identify and prioritize the top policy and technology issues facing state government. The CIOs top ten priorities are identified and used as input to NASCIO's programs, planning for conference sessions, and publications.

Capitals in the Clouds - The Case for Cloud Computing in State Government Part II: Challenges and Opportunities to Get Your Data Right

  • October 2011
  • Number of views: 6543
Capitals in the Clouds - The Case for Cloud Computing in State Government Part II: Challenges and Opportunities to Get Your Data Right
Cloud computing brings with it opportunities, issues and risks. One major consideration that must be addressed is the management of data – governance, stewardship, consistency, ownership and security. Data is the lifeblood of state government operations and critical for service delivery. With the fiscal stress and operational pressures that are driving state and local governments toward serious consideration and adoption of cloud computing, the data must not be ignored. These pressures must be managed intelligently to avoid pushing government into a future situation that could constitute greater cost, and more difficulty in achieving interoperability of government lines of business and government jurisdictions.

State Cyber Security Resource Guide: Awareness, Education, and Training Initiatives

  • September 2011
  • Number of views: 5847
State Cyber Security Resource Guide:  Awareness, Education, and Training Initiatives
For the 2011 observance of National Cyber Security Awareness Month, NASCIO has updated its Resource Guide for State Cyber Security Awareness,Education, and Training Initiatives. The guide includes new information from our state members, who provided examples of state awareness programs and initiatives. This is an additional resource of best-practice information, together with an interactive state map to allow users to drilldown to the actual resources that states have developed or are using to promote cyber awareness. It includes contact information for the CISO, hyperlinks to state security and security awareness pages, and information describing cyber security awareness, training, and education initiatives.

Capitals in the Clouds - The Case for Cloud Computing in State Government Part I: Definitions and Principles

  • June 2011
  • Number of views: 7313
Capitals in the Clouds - The Case for Cloud Computing in State Government Part I: Definitions and Principles
Cloud computing has arrived as a serious alternative for state government. There are outstanding issues that must be faced and dealt with in order to maintain the reliability, responsibility, security, privacy, and citizen-confidence in government services. Government is exploring technology and business process innovations that will make the way for government to deliver existing services more economically. Cloud computing provides a number capabilities that have the potential for enabling such innovation.
RSS
123456

Resources By Category

Categories

Resources By Date

Archive