SAN DIEGO, Calif., Wednesday, October 24 — The National Association of State Chief Information Officers (NASCIO) presented the State Technology Innovator Award to three deserving public servants during the 2018 NASCIO Annual Conference in San Diego.

The NASCIO State Technology Innovator Award honors outstanding individuals who have made contributions to advance state technology policy through the promotion of best practices, adoption of new technologies and advancements in service delivery. Nominees must be a state government employee. Nominations were gathered from NASCIO members as well as non-members and selected by the NASCIO Executive Committee. The following are the recipients of the 2018 NASCIO State Technology Innovator Award:

Chris Cruz, Deputy Chief Information Officer, State of California
As Deputy CIO for the State of California, Chris Cruz is a visionary leader in digital technology for the department, the state and the nation. From driving SaaS solutions and a single statewide e-mail solution to serving as an ambassador both at home and across the country, Chris has been instrumental to California’s continued success.

David McCurdy, Chief Technology Officer, State of Colorado
David McCurdy is blazing a path for the State of Colorado in modernizing IT. David’s advancements to Colorado’s technology agenda are making a difference for state employees and Coloradans, thereby helping to create a safer, happier and healthier state. He works to empower the state with flexible technology that will drive sustainable and intelligent business decisions for years to come.

Rajiv Rao, Chief Technology Officer, State of New York
Rajiv Rao’s broad experience and bold vision equips him with a perspective to work with clients to architect innovative technology solutions that deliver big value for New York. Leading projects such as data center consolidation, identity-as-a-service, single sign-on for more than 800 New York state apps, and modern artificial intelligence and machine language processing to improve IT support for the state workforce, Rao is truly an innovator making a difference for the state of New York.

SAN DIEGO, Calif., Tuesday, October 23 — Eleven exemplary initiatives were chosen as recipients for the National Association of State Chief Information Officers’ (NASCIO) 2018 Recognition Awards for outstanding achievement in information technology in state government.

Recipients were announced this evening during the NASCIO Annual Conference in San Diego. This marks the 30th consecutive year NASCIO has honored outstanding information technology achievements in the public sector through the awards program. Recipients were selected by the NASCIO Awards Committee from a field of more than 100 nominees.

“It has been a great privilege to co-chair the NASCIO Awards Committee, particularly this year as we celebrate 30 years of recognizing states for their transformative and innovative projects,” said New Hampshire Commissioner Denis Goulet and Arkansas CTO Yessica Jones. “The recipients honored tonight, as well as all nominated projects, are outstanding examples of how states are working hard to improve the efficiency of state government.”    

The 2018 Award Recipients are:

Business Process Innovations
State of New Mexico, SHARE: From a Four-Letter Word to a Five Letter Success

Cross-Boundary Collaboration & Partnership
State of Georgia, Georgia Gateway

Cybersecurity    
State of Missouri, Vendor Security Risk Management and Benchmarking

Data Management, Analytics and Visualization
State of Indiana, Facilitating Data-Driven Innovation: Indiana Management Performance Hub

Digital Government: Government to Business 
State of Illinois, Unemployment Insurance Tax Modernization
State of Indiana, INBiz: Taking Hoosier Businesses to the Next Level

Digital Government: Government to Citizen 
State of Michigan, Michigan Education and Career Pathfinder

Emerging and Innovative Technologies
Commonwealth of Kentucky, Kentucky’s Integrated Eligibility and Enrollment System
State of Mississippi, My Mississippi, My Technology

Enterprise IT Management Initiatives
State of Nebraska, Operation Enterprise IT: A Hybrid Consolidation

Information Communications Technology (ICT) Innovations
State of Michigan, Mi Bridges: Helping Michigan Citizens Every Step of the Way

State CIO Office Special Recognition    
Commonwealth of Pennsylvania, Center of Excellence for Electronic Grants

Funding, talent and increase of threats continue as top issues impacting states’ cybersecurity risk, “Now is the time to disrupt the status quo” says report

SAN DIEGO, Calif., Tuesday, October 23 — Even as state government Chief Information Security Officers (CISOs) have increased their access to and communications with top leaders, the top three issues impacting states’ cybersecurity remain the same from past surveys – budget, talent and increasing cyber threats. These findings from the “2018 Deloitte-National Association of State Chief Information Officers (NASCIO) Cybersecurity Study” are a call for bold action to disrupt the status quo, according to the report authors.

“We’ve been surveying state CISOs every other year since 2010 and these top three issues have not changed,” said Bo Reese, NASCIO president and chief information officer (CIO), state of Oklahoma. “The reality is that the magnitude of threats is rarely matched in attention and funding in state government. Simply put, the time is now to be bold in state cybersecurity.”

“While CISOs and CIOs have done a tremendous job over the years developing much needed governance plans and building relationships with state leaders, the funding and talent needed to fully address cyber risk is not there,” said Srini Subramanian, principal, Deloitte & Touche LLP, and state and local government risk advisory leader. “The three bold plays outlined in this year’s report provide state CISOs and CIOs additional ideas on ways to get more funding and overcome cybersecurity talent challenge.”

The three bold steps state CISOs can take to overcome persistent challenges:

1)    Advocate for dedicated cybersecurity program funding.

Nearly half of all US states do not have a dedicated cybersecurity budget and data from this year’s survey shows slower cybersecurity budget growth compared to 2016. In fact, most states still spend less than 3 percent of their information technology budget on cybersecurity.

Additionally, CISOs can also push for funding from federal agencies to implement the federal security requirements and controls. For example, state health and human services (HHS) agencies were able to secure funding from Centers for Medicare and Medicaid Services (CMS) to establish CMS’s suggested Minimum Acceptable Risk Safeguards.

2)    Be an enabler of innovation, not a barrier.

In this year’s survey, emerging technology initiatives in areas such as artificial intelligence, smart enterprises (smart cities), and blockchain technology rank at the bottom of the CISO initiative list, indicating that they may not yet be a priority for CISOs. To take on emerging technologies, CISOs should actively participate with state CIOs in shaping the innovation agenda, collaborate with state digital and innovation officers and lead the charge to help program leaders embrace and securely adopt new technologies.

3)    Team with the private sector and higher education.

This year’s survey results show that states’ cybersecurity teams remain small with an increase in the talent gap. More than half of CISOs have 15 or less full-time-equivalent employees.

To address the talent gap, CISOs can: increase their use of teaming with private sector with services level for select cybersecurity functions; form partnerships with local colleges and universities; and establish a network among state and local agencies, academia; and companies to share threat information, capabilities and contracts.

In addition to the top-three concerns outlined by CISOs, there are a number of emerging trends getting CISOs’ attention, including: election security, cloud and outsourced data center security.

Other noteworthy trends in this year’s report include:

• One-fifth of state respondents say they report monthly to the governor, and a third report monthly to the state secretary or deputy secretary. Monthly reporting to business stakeholders has also increased to 25 percent in 2018 from 10 percent in 2016.
• Forty states now have documented and approved governance plans (up from 29 in 2016).
• Sixty-one percent of respondents indicate that their cybersecurity staff has gaps in competencies; 94 percent of states indicate that salary is the biggest barrier to attract and retain cybersecurity talent.
• Awareness training for state employees and contractors is now an established practice in 94 percent of states, compared to 84 percent in 2016.

To read the full study visit, www.nascio.org/stateofcyber.

About the survey

This survey is based on responses from US state enterprise-level CISOs with additional input from agency CISOs and security staff members within state governments.

CISO participants answered 56 questions designed to characterize the enterprise-level strategy, governance and operation of security programs. Representatives from all 50 states responded to this year’s survey. The report was produced by Deloitte’s Center for Government Insights and NASCIO.

SAN DIEGO, Calif., Sunday, October 21 — The Corporate Leadership Council (CLC) is comprised of dedicated National Association of State Chief Information Officers (NASCIO) corporate members committed to utilizing private sector intellectual and financial resources to serve NASCIO and its members. CLC members promote information sharing among public and private-sector members, providing expertise to NASCIO issue focus areas and developing publications and projects.

The NASCIO corporate members have elected a new CLC chair and vice chair for the 2018-2019 program year. The CLC will be led by Dan Lohrmann, Security Mentor, as chair and Rick Webb, Accenture, as vice chair. The CLC chair and vice chair hold an advisory seat on NASCIO's Executive Committee.

Corporations holding memberships in NASCIO for five years (and at 5-year intervals thereafter) are recognized during the Annual Conference. Recognition of corporate longevity is automatic, and nomination is not required.

NASCIO’s Corporate Longevity Award recipients for 2018 are:

20-years – Conduent, Verizon

15-years – CA Technologies

10-years – BerryDunn, Strategy Execution

5-years – Acquia, C Spire, Capgemini Government Solutions, Centrify, First Data, ISAM, Palo Alto Networks, ServiceNow

LEXINGTON, Ky., Wednesday, October 17 — Today, the National Association of State Chief Information Officers (NASCIO) and the Council of State Archivists (CoSA) announced the release of “State Archiving in the Digital Era: A Playbook for the Preservation of Electronic Records.” The release comes just one week after NASCIO recognized Electronic Records Day, which is celebrated every year on October 10.

States uniquely hold important records on their citizens from birth, to marriage, to property, to death, as well as records that hold general historical significance. For the last several years the number of digital records created by state governments has been rapidly increasing. Many states are finding that they are unprepared to deal with the unique management and preservation issues that are related to digital archives. NASCIO, along with CoSA created this playbook for the preservation of state electronic records. This document includes eleven plays that state officials should consider when working together toward the preservation of digital archives.

See the playbook at: https://www.nascio.org/publications