Resource Center For State Cybersecurity
The significant and continued growth of cyber-attacks against the United States makes cybersecurity a critical issue for all Governors. To help states address the consequences of the rapidly evolving and expanding technological threats now faced by law enforcement agencies, public works and energy agencies, private financial and communications sectors and the general public, NGA launched a Resource Center for State Cybersecurity to provide Governors with resources, tools and recommendations to help craft and implement effective state cybersecurity policies and practices. To inform the work of the Resource Center, NGA is working with leading experts, practitioners, representatives from key state and federal agencies and representatives from private industry to develop resources and tools and to provide strategic recommendations on state cybersecurity issues.
Featured
The 2023 Cybersecurity Policy Advisors Network In-Person Convening was held on September 27-28th in Washington, DC. Hosted by the National Governors Association (NGA), the event convened the Cybersecurity Policy Advisors Network, including Governors’ advisors and state chief information security officers and other state cybersecurity officials, as well as NGA corporate partners, to share best practices and discuss cybersecurity challenges and strategies across a range of topics.
The Cybersecurity Policy Advisors Network (CPAN) serves as a forum for Governors’ advisors and state chief information security officers to share ideas and troubleshoot challenges with colleagues from other states, connect advisors with valuable resources and materials, and provide opportunities to hear from subject-matter experts via periodic calls, webinars and workshops. Members of the network are identified by Governors’ offices to speak to their Governor’s cybersecurity priorities.
More than 90 participants, including 39 state representatives from at least 28 states and the District of Columbia, attended this event.
Policy Academies/Workshops
- 2022 – National Summit on State Cybersecurity
- 2021 – Policy Academy to Advance Whole-of-State Cybersecurity
- 2020 – Workshops to Advance State Cybersecurity
- 2019 – States Get Assistance On Election Cybersecurity
Meet the team
- Steven Fugelsang, Program Director
- Camille Lodugnon, Policy Coordinator
Focus Areas
- Governance
- Response Planning
- Critical Infrastructure
- Workforce Development & Education
- State & Local Partnerships
NGA Cybersecurity Library
Protecting Critical Infrastructure Against the Current Cyber Threat Environment
Cybersecurity Update – March 2022
Cybersecurity Update – February 2022
Governors Look at Preparing for and Responding to a Cyber Crisis
Governors Convene in Person for 114th National Governors Association Winter Meeting
Cybersecurity Update – January 2022
Cybersecurity in the Water/Wastewater Critical Infrastructure Sector
Information Campaigns and COVID-19 Vaccine Messaging: Applying Lessons Learned from the 2020 Election
Governors Discuss Cybersecurity with Homeland Security Secretary Alejandro Mayorkas
Topic Areas
Governance
NGA Resources
Response Planning
NGA Resources
- State Cyber Disruption Response Plans
- Memo on State Cybersecurity Response Plans
- Cyber Liability Insurance for States
- Building a Civilian Cyber Corps
External Resources
Critical Infrastructure
NGA Resources
- State Protection Of Critical Energy Infrastructure Information
- Smart & Safe: State Strategies for Enhancing Cybersecurity in the Electric Sector
- Cybersecurity in the Health Care Sector
- Cybersecurity and Critical Infrastructure
External Resources
- Health Care Sector Cybersecurity Framework Implementation Guide
- Electricity Subsector Cybersecurity Capability Maturity Model (ES-C2M2)
- NERC Critical Infrastructure Protection (CIP) Standards
- Securing Voter Registration Data
- Major Data Breaches in Health Care
- FDA Draft Guidance on Medical Devices
- Connecticut Public Utilities Cybersecurity Action Plan
Elections Infrastructure Cybersecurity
NGA Resources
External Resources
Workforce Development & Education
NGA Resources
State And Local Partnerships In Cybersecurity
“Cybersecurity is not just an ‘IT problem’ anymore. It is a critical business risk, homeland security and public safety threat, voter confidence issue and economic development opportunity. Cybersecurity requires commitment from state executives and officials to use all levers of state government to move forward.”
Read: STRONGER TOGETHER: State and Local Cybersecurity Collaboration
Additional Resources
Meeting Agendas
2022 – National Summit On State Cybersecurity
2021 – Fourth National Summit On State Cybersecurity
2019 – National Summit on State Cybersecurity – Shreveport-Bossier, LA
2017 – National Summit on State Cybersecurity-Leesburg
2017 – Meet The Threat: States Confront the Cyber Challenge Regional Summit-San Jose
2016 – Meet The Threat: States Confront the Cyber Challenge Regional Summit-Boston
Cybercrime
NGA Resources
- Cybercrime: What Can a Governor Do?
- Cybersecurity and Public Safety
- A Review of State Computer Crime Law
External Resources
Other Publications
- A Compact to Improve Cybersecurity
- Small Business and Cybersecurity
- Q&A: Ransomware
- Q&A: Internet of Things
- Q&A: Phishing
- Crowdsourcing Cybersecurity 101
External Resources