j_jtc_2016a_2016-06-03t10:11:00z2 Hearing Summary

Date: 06/03/2016

11:37 AM -- Presentation on Cybersecurity



Deborah Blyth, Chief Information Security Officer, OIT, came to the table to discuss Secure Colorado (see Attachment A). She discussed the strategic program priorities of Secure Colorado, including protecting information and systems, research and development, partnerships, and compliance. Committee discussion ensued on Secure Colorado's partnership with the private sector. Ms. Blyth also discussed recent program accomplishments, including risk management and risk reduction, compliance and IT audit support, and best practice and leading edge security.



11:51 AM



Ms. Blyth further discussed Secure Colorado's strategic plan and key partnerships, including the Cybersecurity Steering Committee and the Cybersecurity Task Force. Committee discussion ensued on collaboration between the federal and state governments in Colorado on cybersecurity initiatives.



11:58 AM



Ms. Blyth discussed Secure Colorado's focuses for FY 2017, including improved incident preparedness and intelligence, identity and access management, and its 20 critical security controls. Committee discussion ensued on recent audit issues that have been addressed by Secure Colorado, as well as Secure Colorado and OIT's role in the new National Cybersecurity Information Center (NCIC) currently being established in Colorado Springs.





12:12 PM



Ms. Blyth responded to committee questions regarding other recent Secure Colorado upgrades related to cybersecurity, the penetration rate of certain IT security tools, and the cost of cybersecurity tools for executive branch agencies.