overview of state agency cybersecurity costs
play

Overview of State Agency Cybersecurity Costs PRESENTED TO SENATE - PowerPoint PPT Presentation

Sep 01, 2022 •449 likes •591 views

Overview of State Agency Cybersecurity Costs PRESENTED TO SENATE SELECT COMMITTEE ON CYBERSECURITY LEGISLATIVE BUDGET BOARD STAFF MARCH 21, 2018 Department of Information Resources The Texas Department of Information Resources (DIR) provides

  1. Overview of State Agency Cybersecurity Costs PRESENTED TO SENATE SELECT COMMITTEE ON CYBERSECURITY LEGISLATIVE BUDGET BOARD STAFF MARCH 21, 2018

  2. Department of Information Resources The Texas Department of Information Resources (DIR) provides statewide leadership and oversight for management of government information and communications technology as well as cybersecurity controls. The overall mission is to provide technology leadership, solutions, and value to Texas state government, education, and local government entities to enable and facilitate the fulfillment of their core missions. They facilitate and support government use of information and communications technology — everything from computers, Internet service, data storage, online applications, and much more — so that health, education, transportation, and other services are delivered to the citizens and businesses of Texas efficiently, economically, and innovatively. MARCH 21, 2018 LEGISLATIVE BUDGET BOARD ID: 5196 2

  3. State Cybersecurity Controls In order for State agencies to have a strategic roadmap for success, the DIR created the Texas Cybersecurity Strategic Plan for Fiscal Years 2018-2023 which states: “In 2018, the Department of Information Resources Office of the Chief Information Security Officer worked with the Statewide Information Security Advisory Committee to create a statewide strategic plan that focuses on cybersecurity initiatives. The mission of the Texas Cybersecurity Strategic Plan is to assist public sector security personnel in improving their organization’s cybersecurity effectiveness through alignment with statewide goals. Although many organizations are mature in their cybersecurity efforts, continuous improvement is an important component of an effective cybersecurity program.” MARCH 21, 2018 LEGISLATIVE BUDGET BOARD ID: 5196 3

  4. State Cybersecurity Controls For FY 2018-19, DIR was appropriated $21.5 million in All Funds to provide security policy, assurance, education, and awareness; and assist state entities in identifying security vulnerabilities. Additionally, DIR: • Provides a monthly online Cybersecurity Newsletter; • Hosts the Information Security Forum; and • Establishes policy and governance security standards for agencies and institutions of higher education; which are closely aligned with the Federal Information Security Management Act. MARCH 21, 2018 LEGISLATIVE BUDGET BOARD ID: 5196 4

  5. Cybersecurity in the State Budget Cybersecurity costs are embedded in various components of the budget, including: • State Agency Staff (FTEs) • Data Center Services (DCS) • Centralized Accounting and Payroll/Personnel System (CAPPS) • Capital Budgets • Ongoing Maintenance (Daily Operations) • Major Information Resources Projects MARCH 21, 2018 LEGISLATIVE BUDGET BOARD ID: 5196 5

  6. State Agency Cybersecurity Staff The SAO’s classification schedule for FY 2018 lists the State's compensation and classification system, and provides information on employee salaries. $8.0 million is expended annually on 180 agency employees whose responsibilities are primarily related to cybersecurity. These include, but are not limited to: • Chief Information Security Officer • Chief Cybersecurity Officer • Cybersecurity Analyst (I – III) • Cybersecurity Officer • Information Security Officer • Information Technology Auditor (I – IV) and • Information Technology Security Analyst (I – III) MARCH 21, 2018 LEGISLATIVE BUDGET BOARD ID: 5196 6

  7. State Information Technology (IT) Budgets • In FY 2016-17, agencies were appropriated $17.7 million for new cybersecurity projects. • In addition to the $21.5 million appropriation to DIR for on-going cybersecurity services, in FY 2018-19 other agencies received $24.0 million for new cybersecurity projects and initiatives. • Typically, cybersecurity is not a specified item in the state budget and is included within appropriations for related strategies, projects, and programs. • State agency IT Operating Plans average $2.8 billion per year in FYs 2016 - 2019 for DCS, CAPPS, Capital Budget Projects, and Daily Operations. • Cybersecurity projects are an estimated 2 percent of planned IT expenses, with the exception of DCS which is estimated between 5 and 10 percent. MARCH 21, 2018 LEGISLATIVE BUDGET BOARD ID: 5196 7

  8. Data Center Services (DCS) and Estimated Cybersecurity Costs $247.0 $242.0 $250.0 $243.2 $250.0 $200.0 $150.0 $25.0 $24.20 $24.32 Millions $24.7 $100.0 $12.1 $12.2 $12.4 $12.5 $50.0 $0.0 FY 2016 FY 2017 FY 2018 FY 2019 Appropriated Appropriated Appropriated Appropriated DCS 5% 10% MARCH 21, 2018 LEGISLATIVE BUDGET BOARD ID: 5196 8

  9. Daily Operations and Estimated Cybersecurity Costs $611.8 $700.0 $592.1 $583.6 $591.5 $600.0 $500.0 $400.0 Millions $300.0 $200.0 $11.4 $12.5 $13.1 $12.6 $100.0 $0.0 FY 2016 FY 2017 FY 2018 FY 2019 Appropriated Appropriated Appropriated Appropriated Daily Operations Cybersecurity MARCH 21, 2018 LEGISLATIVE BUDGET BOARD ID: 5196 9

  10. Major Information Resources Projects • The Quality Assurance Team (QAT) is overseeing 79 major information resources projects with current estimated costs of $1.5 billion over the life of the projects. • The majority of these are not dedicated cybersecurity projects, although several are being developed strictly for Cybersecurity Advancements and Data Loss Prevention within the agencies or with cybersecurity impacts. • SB 533, 85 th Legislature, requires a state agency assessment of proposed technical architecture for project to ensure agency is using industry accepted architecture standards in planning for implementation. MARCH 21, 2018 LEGISLATIVE BUDGET BOARD ID: 5196 10

  11. Impact of Security Breaches • In FY 2013, the Health & Human Services Commission reported $2.3 million of staffing costs to respond to and recover from 1,948 security incidents. • In FY 2016, the Department of State Health Services reported security incident costs of approximately $1.9 million. • Other potential impacts and issues include: • Physical loss of devices or media containing data; • Incidents affecting IT infrastructure hosted by a third party; • Electronic leakage of data; • Personal data exposure; • Inappropriate IT resource use by employees; and • Viruses and malware. MARCH 21, 2018 LEGISLATIVE BUDGET BOARD ID: 5196 11

  12. Contact the LBB Legislative Budget Board www.lbb.state.tx.us 512.463.1200 MARCH 21, 2018 LEGISLATIVE BUDGET BOARD ID: 5196 12

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

State Agency Lake Forum Overview of State Agency Roles and Mandates Regarding Lakes February 24,

State Agency Lake Forum Overview of State Agency Roles and Mandates Regarding Lakes February 24,

State Agency Lake Forum Overview of State Agency Roles and Mandates Regarding Lakes February 24, 2006 Department of Resources and Economic Development Fish and Game Department Mission - As guardian of the states fish, wildlife and marine

625 views • 49 slides
Cybersecurity Workforce Initiatives Maureen B. Higgins Assistant Director Agency Support and

Cybersecurity Workforce Initiatives Maureen B. Higgins Assistant Director Agency Support and

Cybersecurity Workforce Initiatives Maureen B. Higgins Assistant Director Agency Support and Technical Assistance March 23, 2010 OPM Cybersecurity Workforce Initiatives Goal -- Implement necessary strategies to ensure federal agencies

375 views • 4 slides
Theory of the Firm: Managerial Behavior, Agency Costs and Ownership Structure Jensen and Meckling

Theory of the Firm: Managerial Behavior, Agency Costs and Ownership Structure Jensen and Meckling

Theory of the Firm: Managerial Behavior, Agency Costs and Ownership Structure Jensen and Meckling (1976) Presentation by Emma Xu and Michael Farrell October 12 2015 Overview One of the most cited papers in Finance Develops Agency Theory

243 views • 12 slides
Raising Cybersecurity Awareness at a Small Agency, What Works for Me, Will it Work for You???

Raising Cybersecurity Awareness at a Small Agency, What Works for Me, Will it Work for You???

Raising Cybersecurity Awareness at a Small Agency, What Works for Me, Will it Work for You??? Ralph Mosios Federal Housing Finance Agency Chief Information Security Officer March 16, 2016 AGENDA Who is FHFA? The FHFA Security Awareness

360 views • 17 slides
U.S. National U.S. National Why are we talking about Cybersecurity Cybersecurity

U.S. National U.S. National Why are we talking about Cybersecurity Cybersecurity

U.S. National U.S. National Why are we talking about Cybersecurity Cybersecurity cybersecurity? William J. Perry Martin Casado Keith Coleman Dan Wendlandt MS&E 91SI Spring 2004 Stanford University U.S. National Cybersecurity

79 views • 7 slides
Managing Cyber Risk for State Governments IU Cybersecurity Risk Management Program

Managing Cyber Risk for State Governments IU Cybersecurity Risk Management Program

Managing Cyber Risk for State Governments IU Cybersecurity Risk Management Program Multidisciplinary (Law, Secure Computing, & Business) Built on IUs Cybersecurity Certificates Applied Cybersecurity Risk Management Capstone

1.22k views • 75 slides
LEGISLATION PAM GREENBERG, NCSL | NASS 2019 SUMMER CONFERENCE | JULY 2019 STATE CYBERSECURITY

LEGISLATION PAM GREENBERG, NCSL | NASS 2019 SUMMER CONFERENCE | JULY 2019 STATE CYBERSECURITY

OVERVIEW OF STATE CYBERSECURITY LAWS & LEGISLATION PAM GREENBERG, NCSL | NASS 2019 SUMMER CONFERENCE | JULY 2019 STATE CYBERSECURITY LAWS & LEGISLATION ABOUT NCSL Serves 7,383 legislators and 25,000 legislative staff. Provides

462 views • 17 slides
EU in action about cybersecurity NIS Directive 5G Cybersecurity Act GDPR Contractual ISACs

EU in action about cybersecurity NIS Directive 5G Cybersecurity Act GDPR Contractual ISACs

EU Cybersecurity European policy overview e-IRG e-IRG 4 December 2019 Brussels Anni Hellman, Senior Expert, Permanent Representation of Finland to the European Union Seconded for the Finnish Presidency from the Directorate General

320 views • 28 slides
PRESENTATION COMMISSION OVERVIEW Intro to Agency State Overview Incentives EXECUTIVE

PRESENTATION COMMISSION OVERVIEW Intro to Agency State Overview Incentives EXECUTIVE

1/30/19 ARKANSAS ECONOMIC DEVELOPMENT PRESENTATION COMMISSION OVERVIEW Intro to Agency State Overview Incentives EXECUTIVE TEAM MISSION STATEMENT To create economic opportunity by attracting higher paying jobs, expanding and

158 views • 5 slides
INDEPENDENT COMMUNICATIONS AUTHORITY OF SOUTH AFRICA(ICASA) CYBERSECURITY PRESENTATION AT SAIGF

INDEPENDENT COMMUNICATIONS AUTHORITY OF SOUTH AFRICA(ICASA) CYBERSECURITY PRESENTATION AT SAIGF

INDEPENDENT COMMUNICATIONS AUTHORITY OF SOUTH AFRICA(ICASA) CYBERSECURITY PRESENTATION AT SAIGF 28 th November 2018 AGENDA 1. State of Cybersecurity Globally 2. State of Cybersecurity in South Africa 2.1 Policy landscape 2.2 Legislation

594 views • 15 slides
The Polluter-pays Principle and Environmental Costs Dr. Astrid Matthey German Environment Agency

The Polluter-pays Principle and Environmental Costs Dr. Astrid Matthey German Environment Agency

Fr Mensch & Umwelt 5TH FLORENCE INTERMODAL FORUM. INTERNALISING THE EXTERNAL COSTS OF TRANSPORT The Polluter-pays Principle and Environmental Costs Dr. Astrid Matthey German Environment Agency Polluter pays? Costs arising from

430 views • 9 slides
Office of the Secretary of State Secretary of State Mark Hammond Agency Overview House

Office of the Secretary of State Secretary of State Mark Hammond Agency Overview House

1 Office of the Secretary of State Secretary of State Mark Hammond Agency Overview House Legislative Oversight Committee September 27, 2019 2 A State Constitutional Office The current Secretary of States Office was established by

1.62k views • 151 slides
National Core Indicators: Overview and Costs The state participation fee in 2016-17 is $13,780 and

National Core Indicators: Overview and Costs The state participation fee in 2016-17 is $13,780 and

National Core Indicators: Overview and Costs The state participation fee in 2016-17 is $13,780 and is an optional membership available to states which are NASDDDS members. NASDDDS and Human Services Research Institute (HSRI) manage the

336 views • 4 slides
Lower Costs Agenda Overview The current state of the U.S. healthcare system

Lower Costs Agenda Overview The current state of the U.S. healthcare system

December 1, 2015 Spreading and Scaling Healthcare Innovations That Improve Quality and Lower Costs Agenda Overview The current state of the U.S. healthcare system About the Peterson Center on Healthcare The role

578 views • 18 slides
Presented by: Islanders Bank Cybersecurity Awareness Cybersecurity Awareness Objectives:

Presented by: Islanders Bank Cybersecurity Awareness Cybersecurity Awareness Objectives:

Presented by: Islanders Bank Cybersecurity Awareness Cybersecurity Awareness Objectives: Define Cybersecurity & why its important Provide information about Dept. Homeland Security Cybersecurity Campaigns: National

328 views • 22 slides
North Carolina Cybersecurity Awareness Month (NCSAM) Maria S. Thompson State Chief Risk

North Carolina Cybersecurity Awareness Month (NCSAM) Maria S. Thompson State Chief Risk

North Carolina Cybersecurity Awareness Month (NCSAM) Maria S. Thompson State Chief Risk Officer WHY CYBERSECURITY AWARENESS IS CRITICAL https://www.youtube.com/watch?v=Ru0y5rCETqc&feature=youtu.be AGENDA 0900 09:45 Opening

342 views • 9 slides
U.S. Coast Guard Executive Overview Briefing Sector Baltimore 10 March 2011 United States Coast

U.S. Coast Guard Executive Overview Briefing Sector Baltimore 10 March 2011 United States Coast

U.S. Coast Guard Executive Overview Briefing Sector Baltimore 10 March 2011 United States Coast Guard U.S. Department of Homeland Security Agenda Introduction Coast Guard Overview Sector Baltimore Focus Conclusion The Shield

846 views • 31 slides
Da ta Priva c y a nd Se c urity Ba sic s fo r E ve ry Busine sse s Se pte mb e r 11, 2013 Ag e

Da ta Priva c y a nd Se c urity Ba sic s fo r E ve ry Busine sse s Se pte mb e r 11, 2013 Ag e

Ba c k to Sc ho o l: Da ta Priva c y a nd Se c urity Ba sic s fo r E ve ry Busine sse s Se pte mb e r 11, 2013 Ag e nda Ove rvie w Co ntra c t Co nside ra tio ns Pa yme nts & Co lle c tio ns Me rg e rs & Ac q

373 views • 34 slides
Bring Your Own Device IAPP KnowledgeNet Detroit November 5, 2013 Purpose Provide a forum to

Bring Your Own Device IAPP KnowledgeNet Detroit November 5, 2013 Purpose Provide a forum to

Bring Your Own Device IAPP KnowledgeNet Detroit November 5, 2013 Purpose Provide a forum to discuss implications of use of employee owned devices BYOD in the workplace Discuss competing priorities and concerns in creating and

669 views • 54 slides
Update on Security Improvements at San Francisco General Hospital Department Public Health

Update on Security Improvements at San Francisco General Hospital Department Public Health

Update on Security Improvements at San Francisco General Hospital Department Public Health Health Commission Meeting December 17, 2013 1 New Security Measures Implemented Beginning in October Daily emergency stairwell checks by Sheriff

118 views • 7 slides
District 6-0 Regional Operations Plan (ROP) Regional Operations Forum Meeting #1 January 11 th ,

District 6-0 Regional Operations Plan (ROP) Regional Operations Forum Meeting #1 January 11 th ,

PENNDOT District 6-0 Regional Operations Plan (ROP) Regional Operations Forum Meeting #1 January 11 th , 2007 1 Meeting Agenda Meeting Agenda PENNDOT Introductions ROP Overview Existing and Planned ITS Deployments

356 views • 21 slides
District-Wide Safety Plan November 14, 2016 Historical records indicate that mass shootings and

District-Wide Safety Plan November 14, 2016 Historical records indicate that mass shootings and

District-Wide Safety Plan November 14, 2016 Historical records indicate that mass shootings and shootings in schools have a long history. However, in recent years with the advent of the media documenting events of this nature, a particular focus

553 views • 23 slides
Committee on Information Technology Special Meeting October 27, 2017 1 Dr. Carlton B. Goodlett

Committee on Information Technology Special Meeting October 27, 2017 1 Dr. Carlton B. Goodlett

Committee on Information Technology Special Meeting October 27, 2017 1 Dr. Carlton B. Goodlett Place, City Hall, Room 305 San Francisco, CA 94102 1 AGENDA 1. Call to Order by Chair 2. Roll Call 3. Approval of Meeting Minutes from

748 views • 49 slides
SECOND QUARTER REVENUES INCREASE BY 11% FROM PREVIOUS YEAR AGENDA New CEO Highlights

SECOND QUARTER REVENUES INCREASE BY 11% FROM PREVIOUS YEAR AGENDA New CEO Highlights

Interim Report Q2/2016 Samu Konttinen, CEO SECOND QUARTER REVENUES INCREASE BY 11% FROM PREVIOUS YEAR AGENDA New CEO Highlights from Q2 Market update Business update Outlook Financials 2 SAMU KONTTINEN STARTS AS THE

485 views • 26 slides

More recommend