LEXINGTON, Ky., Thursday, December 13, 2018 — The National Association of State Chief Information Officers (NASCIO) is honored to announce that several members of its Executive Committee have been appointed to serve as NASCIO representatives on three key federal advisory committees:

Utah Chief Information Officer Mike Hussey was appointed to the National Geospatial Advisory Committee (NGAC). Sponsored by the U.S. Department of the Interior, NGAC provides recommendations on geospatial policy and management issues to the Federal Geographic Data Committee, the interagency executive group responsible for providing leadership and direction in federal geospatial programs. Learn more about NGAC.

NASCIO Secretary/Treasurer and North Carolina Secretary and Chief Information Officer Eric Boyette has been appointed to SAFECOM, a public safety communications program of the U.S. Department of Homeland Security. This program relies on its state and local members for guidance on interoperability solutions that allow emergency responders to communicate effectively. Learn more about SAFECOM.

Finally, New Hampshire Commissioner Denis Goulet has been appointed to the Public Safety Advisory Committee (PSAC). The committee members support FirstNet in carrying out its duties and responsibilities by providing guidance and expertise to concepts developed by FirstNet. Learn more about PSAC.

LEXINGTON, Ky., Wednesday, November 7, 2018 —

​Total donation of $12,445 provided to local San Diego organization

The National Association of State Chief Information Officers (NASCIO) provided a $12,445 donation to the San Diego Futures Foundation (SDFF), a San Diego organization working to bridge the digital divide and improve lives by making information technology available to underserved populations.

Donations were collected during the NASCIO Annual Conference in San Diego through the Give Back program to thank the host community. NASCIO state, corporate and nonprofit members donated $7,445 through individual contributions and NASCIO provided a $5,000 donation.

“The donations from NASCIO will allow us to expand our training programs around digital literacy and digital inclusion.  In San Diego there are over 300,000 individuals who do not have access to technology or the internet and do not know how to use technology to improve their lives. Our mission is to make sure that everyone in San Diego County who desires the benefits that technology offers has the skills to do it,” said Gary Knight the Executive Director of the San Diego Futures Foundation. “With the generosity of NASCIO, we will be able to serve hundreds of new residents and provide them with the opportunities that most of us take for granted.”

To learn more about the San Diego Futures Foundation, visit www.sdfutures.org.

SAN DIEGO, Calif., Wednesday, October 24 — The National Association of State Chief Information Officers (NASCIO) presented the State Technology Innovator Award to three deserving public servants during the 2018 NASCIO Annual Conference in San Diego.

The NASCIO State Technology Innovator Award honors outstanding individuals who have made contributions to advance state technology policy through the promotion of best practices, adoption of new technologies and advancements in service delivery. Nominees must be a state government employee. Nominations were gathered from NASCIO members as well as non-members and selected by the NASCIO Executive Committee. The following are the recipients of the 2018 NASCIO State Technology Innovator Award:

Chris Cruz, Deputy Chief Information Officer, State of California
As Deputy CIO for the State of California, Chris Cruz is a visionary leader in digital technology for the department, the state and the nation. From driving SaaS solutions and a single statewide e-mail solution to serving as an ambassador both at home and across the country, Chris has been instrumental to California’s continued success.

David McCurdy, Chief Technology Officer, State of Colorado
David McCurdy is blazing a path for the State of Colorado in modernizing IT. David’s advancements to Colorado’s technology agenda are making a difference for state employees and Coloradans, thereby helping to create a safer, happier and healthier state. He works to empower the state with flexible technology that will drive sustainable and intelligent business decisions for years to come.

Rajiv Rao, Chief Technology Officer, State of New York
Rajiv Rao’s broad experience and bold vision equips him with a perspective to work with clients to architect innovative technology solutions that deliver big value for New York. Leading projects such as data center consolidation, identity-as-a-service, single sign-on for more than 800 New York state apps, and modern artificial intelligence and machine language processing to improve IT support for the state workforce, Rao is truly an innovator making a difference for the state of New York.

SAN DIEGO, Calif., Tuesday, October 23 — Eleven exemplary initiatives were chosen as recipients for the National Association of State Chief Information Officers’ (NASCIO) 2018 Recognition Awards for outstanding achievement in information technology in state government.

Recipients were announced this evening during the NASCIO Annual Conference in San Diego. This marks the 30th consecutive year NASCIO has honored outstanding information technology achievements in the public sector through the awards program. Recipients were selected by the NASCIO Awards Committee from a field of more than 100 nominees.

“It has been a great privilege to co-chair the NASCIO Awards Committee, particularly this year as we celebrate 30 years of recognizing states for their transformative and innovative projects,” said New Hampshire Commissioner Denis Goulet and Arkansas CTO Yessica Jones. “The recipients honored tonight, as well as all nominated projects, are outstanding examples of how states are working hard to improve the efficiency of state government.”    

The 2018 Award Recipients are:

Business Process Innovations
State of New Mexico, SHARE: From a Four-Letter Word to a Five Letter Success

Cross-Boundary Collaboration & Partnership
State of Georgia, Georgia Gateway

Cybersecurity    
State of Missouri, Vendor Security Risk Management and Benchmarking

Data Management, Analytics and Visualization
State of Indiana, Facilitating Data-Driven Innovation: Indiana Management Performance Hub

Digital Government: Government to Business 
State of Illinois, Unemployment Insurance Tax Modernization
State of Indiana, INBiz: Taking Hoosier Businesses to the Next Level

Digital Government: Government to Citizen 
State of Michigan, Michigan Education and Career Pathfinder

Emerging and Innovative Technologies
Commonwealth of Kentucky, Kentucky’s Integrated Eligibility and Enrollment System
State of Mississippi, My Mississippi, My Technology

Enterprise IT Management Initiatives
State of Nebraska, Operation Enterprise IT: A Hybrid Consolidation

Information Communications Technology (ICT) Innovations
State of Michigan, Mi Bridges: Helping Michigan Citizens Every Step of the Way

State CIO Office Special Recognition    
Commonwealth of Pennsylvania, Center of Excellence for Electronic Grants

Funding, talent and increase of threats continue as top issues impacting states’ cybersecurity risk, “Now is the time to disrupt the status quo” says report

SAN DIEGO, Calif., Tuesday, October 23 — Even as state government Chief Information Security Officers (CISOs) have increased their access to and communications with top leaders, the top three issues impacting states’ cybersecurity remain the same from past surveys – budget, talent and increasing cyber threats. These findings from the “2018 Deloitte-National Association of State Chief Information Officers (NASCIO) Cybersecurity Study” are a call for bold action to disrupt the status quo, according to the report authors.

“We’ve been surveying state CISOs every other year since 2010 and these top three issues have not changed,” said Bo Reese, NASCIO president and chief information officer (CIO), state of Oklahoma. “The reality is that the magnitude of threats is rarely matched in attention and funding in state government. Simply put, the time is now to be bold in state cybersecurity.”

“While CISOs and CIOs have done a tremendous job over the years developing much needed governance plans and building relationships with state leaders, the funding and talent needed to fully address cyber risk is not there,” said Srini Subramanian, principal, Deloitte & Touche LLP, and state and local government risk advisory leader. “The three bold plays outlined in this year’s report provide state CISOs and CIOs additional ideas on ways to get more funding and overcome cybersecurity talent challenge.”

The three bold steps state CISOs can take to overcome persistent challenges:

1)    Advocate for dedicated cybersecurity program funding.

Nearly half of all US states do not have a dedicated cybersecurity budget and data from this year’s survey shows slower cybersecurity budget growth compared to 2016. In fact, most states still spend less than 3 percent of their information technology budget on cybersecurity.

Additionally, CISOs can also push for funding from federal agencies to implement the federal security requirements and controls. For example, state health and human services (HHS) agencies were able to secure funding from Centers for Medicare and Medicaid Services (CMS) to establish CMS’s suggested Minimum Acceptable Risk Safeguards.

2)    Be an enabler of innovation, not a barrier.

In this year’s survey, emerging technology initiatives in areas such as artificial intelligence, smart enterprises (smart cities), and blockchain technology rank at the bottom of the CISO initiative list, indicating that they may not yet be a priority for CISOs. To take on emerging technologies, CISOs should actively participate with state CIOs in shaping the innovation agenda, collaborate with state digital and innovation officers and lead the charge to help program leaders embrace and securely adopt new technologies.

3)    Team with the private sector and higher education.

This year’s survey results show that states’ cybersecurity teams remain small with an increase in the talent gap. More than half of CISOs have 15 or less full-time-equivalent employees.

To address the talent gap, CISOs can: increase their use of teaming with private sector with services level for select cybersecurity functions; form partnerships with local colleges and universities; and establish a network among state and local agencies, academia; and companies to share threat information, capabilities and contracts.

In addition to the top-three concerns outlined by CISOs, there are a number of emerging trends getting CISOs’ attention, including: election security, cloud and outsourced data center security.

Other noteworthy trends in this year’s report include:

• One-fifth of state respondents say they report monthly to the governor, and a third report monthly to the state secretary or deputy secretary. Monthly reporting to business stakeholders has also increased to 25 percent in 2018 from 10 percent in 2016.
• Forty states now have documented and approved governance plans (up from 29 in 2016).
• Sixty-one percent of respondents indicate that their cybersecurity staff has gaps in competencies; 94 percent of states indicate that salary is the biggest barrier to attract and retain cybersecurity talent.
• Awareness training for state employees and contractors is now an established practice in 94 percent of states, compared to 84 percent in 2016.

To read the full study visit, www.nascio.org/stateofcyber.

About the survey

This survey is based on responses from US state enterprise-level CISOs with additional input from agency CISOs and security staff members within state governments.

CISO participants answered 56 questions designed to characterize the enterprise-level strategy, governance and operation of security programs. Representatives from all 50 states responded to this year’s survey. The report was produced by Deloitte’s Center for Government Insights and NASCIO.