ISD: IT Security (1850P)

Program Outcome Statement

Protect the County's network, data, and connected devices from malicious activities as well as ensure that the County workforce follows Information Technology (IT) best practices, standards, and policies.

Program Services

  • Centrally-managed anti-virus and anti-spam services for workstations and servers
  • Centrally-managed patch management environment for workstations and servers
  • Centrally-managed e-mail security and encryption services
  • Centrally-managed desktop and laptop encryption services
  • Identity Management (Single Sign On) services
  • Log Management services
  • Vulnerability Management services
  • Annual Information Technology Security Awareness training and reporting
  • Periodic Security newsletters and e-mail
  • Expert Witness services
  • Incident Response services
  • Security investigations and reports
  • Information Technology Standards, Policies, and Guidelines
  • Cardkey services

Overview

The Information Technology (IT) Security Program provides countywide services and support in the areas of information technology and security. The primary function of this Program is to protect County information resources. The Program is responsible for identity and access management, remote access, investigations, information technology auditing, information technology security policies, information technology security training, and cardkey access.

At the start of fiscal year 2017-18, the IT Security Program was created and the following three measures were established to monitor its performance: Completion of Annual Information Technology Security Training Countywide, Median Number of Minutes to Respond to High Priority Incidents, and Usage of Multi-Factor Authentication Countywide.  The expectation is that these three measures will increase security awareness among County users as well as assist in making County resources more secure.  


Completion of Annual Information Technology Security Training Countywide

Median Number of Minutes to Respond to High Priority Incidents

Usage of Multi-Factor Authentication Countywide

FY 2017-18 Mid-Year Story Behind Performance

Completion of Annual IT Security Training Countywide
Security awareness training is top priority for all organizations. With the continued increase in security threats, phishing, and other types of attacks, the County uses the annual training requirement to develop awareness and educate personnel to keep information technology security fresh in their minds. This measure has been calculated monthly by comparing the number of County staff that have been assigned the training to the number of staff that have completed it. ISD has been working with all County departments to encourage completion of this training through reminders and reports.  Currently at 87 percent complete, this measure should meet the annual target of 90 percent before June 2018. 

Median Number of Minutes to Respond to High Priority Incidents
With a mid-year median of 12.5 minutes, the Program is meeting the target of 60 minutes or less to respond to High Priority Incidents. This measure demonstrates that the Program is committed to monitoring systems and responding appropriately to address urgent incidents which will in turn minimize downtime for customers.  By reviewing each high priority incident monthly, this measure has provided insight on ways to better track our performance as well as ways to proactively plan for responses to future high priority incidents.

Usage of Multi-Factor Authentication Countywide
Multi-Factor Authentication (MFA) Countywide was rolled out to help secure County resources, applications, and data. The Department has been using this measure for the last six months to track the percentage of users making use of the technology on a regular basis by evaluating the number of users that have registered at least one multi-factor authentication on their account and compare it to the users who are actively accessing County resources when outside the County's network that are being secured with multi-factor authentication.  At a peak so far this fiscal year of 68 percent, this measure is just below the annual target of 73 percent.  ISD continues to work with County departments to send reminders encouraging the use of resources outside of the County which would trigger usage of MFA, as well as encourage that new applications are required to participate in the MFA environment.

Future Priorities
  • Active Directory: Assess the countywide requirements and initiatives related to Active Directory and implement a simplified domain and forest design based on the assessment that includes developing the County's future state identity life cycle management strategy
  • Cardkey: Upgrade legacy cardkey hardwarde to prepare for P2000 software upgrade
  • Remote Access: Implement a new remote access solution to enhance security and offer simplified options for County employees, contractors and vendors

Author: Stormy Maddux     Contact Email: SMaddux@smcgov.org     Date Updated: 01-29-2018