[CDP-development] Cyber Disruption Meeting - Follow Up

ALBIN Cinnamon S * DAS cinnamon.s.albin at das.oregon.gov
Fri Apr 15 15:30:29 PDT 2022 

Good afternoon:
Thank you to those able to attend our quarterly meeting. We had some great discussions, highlights are captured below. Please let me know if you have any additions or corrections. If you have suggestions for next quarters meeting, please send them to me as well.


  *   Mark J. (CSS) provided an update on SOC activities
     *   Local government partners who utilize Tenable IO and are interested in CISA Cyber Hygiene- Vulnerability Scanning (attached overview) can contact Mark for more information.
  *   Reminder of CISA Shields Up campaign
  *   IT ecosystem- Who has access
     *   Group discussed challenges of getting a complete view of their IT ecosystem and ways to assist in getting that view. Suggestions to assist in identifying the IT ecosystem are:
        *   CISA risk assessment can help assist identifying systems
        *   Have a systems inventory
        *   Have access agreements (vendors and third parties)
        *   Establish standard operating procedures (SOP)
        *   Document interconnections (interconnection tables)
        *   Document System Security Plans
     *   Nancy said she uses a tool that provides a Systems Security Plan and an executive presentation.
     *   Richard mentioned he recommends using Security Studio - Contact Richard for more information.
     *   Group discussed how vendors are not always as supportive as initially believed. Organizations need to understand specifically what they receive with "vendor support" and should have expectations documented.
     *   Group also discussed the need for knowledge transfer. Several report that there is a reliance on staff with historical knowledge and access. There is a need to move to a knowledge transfer to lessen risk.
  *   Group discussed challenges:
     *   Changes are occurring to cyber insurance. Insurers have added questions to the supplemental addendum that are more granular and sometimes appear to not provide an accurate depiction of the risk. Organizations should discuss with the insurer the risk.
     *   Executives have competing priorities and providing them a wholistic view of cyber and the associate risk can be difficult. Having ways to communicate  such as presentations or speaking points would be helpful.  The group discussed having a dashboard or report card would be helpful.
        *   Anthony stated he uses a toll developed by Treasury.
        *   Anthony will send the tool set (attached). Josh reported he uses the CSF tool. He will send an example

Next Quarter

  *   Kim M. will share next quarter on Lane Counties initiative/agreement with National Guard
  *   Mutual Aid Sub - workgroup update
  *   Fusion Center briefing

Regards,

[cid:image001.png at 01D850DD.BB904B60]

Cinnamon Albin
Cyber Security
Enterprise Information Services
Cyber Security Services (CSS)
Desk: (503)373-1496
Cell: (971)707-1966
"Ensuring user-friendly, reliable and secure state technology systems that serve Oregonians."


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://omls.oregon.gov/pipermail/cdp-development/attachments/20220415/8f97d245/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image001.png
Type: image/png
Size: 21907 bytes
Desc: image001.png
URL: <https://omls.oregon.gov/pipermail/cdp-development/attachments/20220415/8f97d245/attachment-0001.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: CyHy Vulnerability Scanning (1).pdf
Type: application/pdf
Size: 333522 bytes
Desc: CyHy Vulnerability Scanning (1).pdf
URL: <https://omls.oregon.gov/pipermail/cdp-development/attachments/20220415/8f97d245/attachment-0001.pdf>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: Security Metrics defined.xlsx
Type: application/vnd.openxmlformats-officedocument.spreadsheetml.sheet
Size: 20831 bytes
Desc: Security Metrics defined.xlsx
URL: <https://omls.oregon.gov/pipermail/cdp-development/attachments/20220415/8f97d245/attachment-0001.xlsx>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OST Security Score Card Details.docx
Type: application/vnd.openxmlformats-officedocument.wordprocessingml.document
Size: 22332 bytes
Desc: OST Security Score Card Details.docx
URL: <https://omls.oregon.gov/pipermail/cdp-development/attachments/20220415/8f97d245/attachment-0001.docx>

More information about the CDP-development mailing list