Cyber Information Security Solution, Data Governance within the - - PowerPoint PPT Presentation

cyber information security solution data governance
SMART_READER_LITE
LIVE PREVIEW

Cyber Information Security Solution, Data Governance within the - - PowerPoint PPT Presentation

May 06, 2023 216 likes •347 views

Cyber Information Security Solution, Data Governance within the Transportation Industry Speakers Eric Toler Nicole Cliff David Allen Jeff Hill Sam Blaney Executive Director, Cyber Security State Chief CIO, Information Group Vice

slide-1
SLIDE 1
slide-2
SLIDE 2

Cyber Information Security Solution, Data Governance within the Transportation Industry

slide-3
SLIDE 3

Eric Toler

Executive Director, Georgia Cyber Center

Nicole Cliff

Cyber Security Program Manager, Georgia Cyber Center

David Allen

State Chief Information Security Officer, Georgia Technology Authority

Jeff Hill

CIO, Information Technology, Georgia Department of Transportation

Sam Blaney

Group Vice President of Cyber Incident Response Management

  • SunTrust

Speakers

slide-4
SLIDE 4

Purpose: to WIN!

Mission: Cultivate an ecosystem where the combined talent of government, academia, and private industry will……

An Unprecedented Investment

Deliver affordable and relevant training/education Develop the region’s cyber- security Workforce Solve complex cybersecurity challenges Offer unbiased advice to policy-makers

slide-5
SLIDE 5

Georgia Technology Authority

David Allen - State CISO

Ransomware is the greatest cyber threat facing state government

Key Takeaways: 1. Identify and document (off-net) mission critical systems and data. 2. Technical security training for Security AND IT personnel. 3. Software patching/updating for operating systems, endpoints, and detection agents. 4. Segment your networks! 5. Store ADMIN credentials in a MFA PW management system. 6. Audit and monitor log events for critical assets. 7. Restrict remote shell usage and local admin accounts. 8. Implement continuous vulnerability management. 9. Exercise business continuity and disaster recovery plans.

  • 10. Refer to the CIS Top 20 security controls!
slide-6
SLIDE 6
slide-7
SLIDE 7
slide-8
SLIDE 8

External Data Sources

slide-9
SLIDE 9

Data Governance

slide-10
SLIDE 10

PIR Change Request in Respect to Data Governance

User Community

The user community has both the responsibility of initiation and justifying a particular PIR. They are in charge with supplying the Configuration Management Team and the Operational Review Committee with any and all needed information concerning the PIR they submit.

Configuration Management

The Configuration Management Team has overall responsibility for each PIR. They act as the research arm

  • f the Operational Review

Committee (ORC) gathering and documenting the Impact Analysis Report.

Operational Review Committee Office Head

Committee members are comprised of the Office Heads

  • f each of the departments

who have knowledge, authority and responsibility for business related system improvements..

Executive Data Governance Committee

The Executive Data Governance Committee is the focal point for all data governance related issues. It is comprised of the Director

  • f each operating

Office/Division of GDOT. They set and enforce policies, procedures and standards that apply to data governance.

Information Technology

IT will process the approved PIR through the SDLC and communicates to the department what changes are being worked on, when they are scheduled for implementation and the impact the change will have (based on PIR). Where needed, IT will engage the Office of Communications to handle any department wide communications.

Commissioner

The Commissioner directs IT

slide-11
SLIDE 11

Questions ?

slide-12
SLIDE 12

Thank You

Jeff Hill

(404) 217-5504 jhill@dot.ga.gov