What does it mean to be working on the right things? This determination is often difficult when considering the state as both an enterprise and a collective of individual agencies. Through interviews and formal surveys, NASCIO and Infosys Public Services gained insight from state IT leaders on the fundamental processes, mechanisms and criteria necessary to ensure that state IT is working on the right things. The resulting report will help state IT decision makers understand the key factors needed to identify the right things to do, see how they and their peer states stand against these factors and what can be done to bridge the gap.
This study reports findings and analysis of a comprehensive survey of State Chief Information Security Officers (CISOs) conducted by NASCIO in partnership with Deloitte. The results of the 2014 Deloitte-NASCIO Cybersecurity Study confirm the growing importance of cybersecurity for states. The following key themes emerged from our analysis:
Maturing role of the CISO: State CISO role continues to gain legitimacy in authority and reporting relationships. The responsibilities of the position are becoming more consistent across states, yet expanding.
Continuing budget-strategy disconnect: The improving economy and states’ growing commitment to cybersecurity have led to an increase – albeit small, in budgets. CISOs have also been successful at tapping supplemental resources, whether from other state agencies, federal funding, or various agency and business leaders. Nevertheless, budgets are still not sufficient to fully implement effective cybersecurity programs – it continues to be the top barrier for CISOs according to the survey results.
Cyber complexity challenge: State information systems house a wide range of sensitive citizen data, making them especially attractive targets for cyber-attacks. CISOs are concerned about the intensity, volume and complexity of cyber threats that run the gamut from malicious code to zero-day attacks.
Talent crisis: The skill sets needed for effective cybersecurity protection and monitoring are in heavy demand across all sectors. State CISOs are struggling to recruit and retain people with the right skills, and they will need to establish career growth paths and find creative ways to build their cybersecurity teams.
NASCIO, TechAmerica, and Grant Thornton LLP have collaborated for a fifth consecutive year to survey state government IT leaders on current issues, trends and perspectives. The continuing economic situation creates problems for states when citizen demands for services continue or grow. The survey sponsors seek to provide these state government IT leaders with an opportunity to voice their thoughts and opinions on matters of high importance. Governors, legislatures and business leaders can benefit from these knowledgeable insights about essential state IT services. As major changes continue to sweep through the state IT landscape, we asked state CIOs to share their perspective on the status and future direction of the state CIO organization and the overall enterprise. While the survey covered a wide variety of topics, we asked CIOs to focus particularly on three main topics – the planning and oversight of critical projects, sourcing and the use of data as a strategic asset. These topics share a common theme in that they all require the CIO to establish priorities, collaborate with stakeholders and integrate with multiple external organizations.
NASCIO takes a look at what has occurred across the states since NASCIO’s first report on open data published in 2009. This latest report examines progress in open data across state and local government. Open data initiatives are advancing at all levels of government in the United States and globally. States and local governments have partnered with industry to create innovative capabilities in delivering data to consumers. Those consumers include citizens, business, non-profit organization and government. The report also presents recommendations for continuing to advance state government open data initiatives and begin moving to a next level of maturity.
The issue brief focuses on state use of social media, specifically on state social media participation policies (“SMPP’s”). NASCIO’s Legal Advisory Working Group took a look at 31 SMPPs, which focus specifically on guidance/policy given to state employees regarding their participation in social media.
States have come a long way in the past few years, with the majority implementing social media policies or working towards one. However, some of the gaps found have the potential to open up states to some severe heartburn: including employee discontent, management concerns, public perception and liability.
The issue brief also addresses the inclusion of clauses on confidentiality, ethical conduct, security and privacy, and transparency in SMPP’s.
Collaboration is a major part of the solution to sustaining and thriving government organizations and services. But it has to be done correctly so it is effective, can sustain through the life of the initiative’s intent, and can adapt with changing environmental circumstances. No matter what service area, mode of delivery, management area, or technology, collaborative arrangements should be considered as an alternative that may deliver the most effective outcomes.
NASCIO is actively investigating existing collaboratives in order to promote collaborative arrangements across government and to uncover operating discipline and best practices that make for successful collaboratives. These best practices support strategy, governance, program and project management, organization, operations and effective application of technology.Collectively these best practices are imbedded in the enterprise architecture of successful collaboratives.
This study reports findings and analysis of a comprehensive survey of State Chief Information Security Officers conducted by NASCIO in partnership with Deloitte in July and August of 2012. Both a repeat and extension of a Deloitte-NASCIO survey originally conducted in 2010, it documents the relative strengths and weaknesses of the security programs that protect state governments’ vital systems and data. The study identifies areas of concern expressed by state CISOs, and provides a call to action for state CIOs and policy officials on the critical need to support and enhance cybersecurity programs.
NASCIO partnered with TechAmerica and Grant Thornton LLP to survey state and territorial chief information officers (CIOs) on their most challenging issues and significant opportunities. At a high level, the survey reveals this to be a time of evolving roles, changing organizational capabilities and demanding workloads for the CIOs. The themes that emerge from the 2011 survey results center on consolidation, collaboration, clout and change — a new state CIO agenda. The report, which is the second Annual Survey of State Chief Information Officers, is titled: “A New C4 Agenda: Perspectives and Trends from State Government IT Leaders.”
This brief explores how state web portals have matured and examines the impact of the 2003 expansion of the dot-gov domain to state and local governments; trends in state portal domain naming conventions; trends in Internet portal branding and marketing; the alignment of agency websites and state email addressing with the state portal; areas of cross-boundary collaboration for online services; and areas for future progress in cross-boundary collaboration for online services.
This issue brief calls attention to the change in Daylight Savings Time in 2007, as a provision of the United States Energy Policy Act of 2005, and gives pointers to state CIO’s about how the change may affect their applications and systems.