Resource Center For State Cybersecurity

The significant and continued growth of cyber-attacks against the United States makes cybersecurity a critical issue for all Governors. To help states address the consequences of the rapidly evolving and expanding technological threats now faced by law enforcement agencies, public works and energy agencies, private financial and communications sectors and the general public, NGA launched a Resource Center for State Cybersecurity to provide Governors with resources, tools and recommendations to help craft and implement effective state cybersecurity policies and practices. To inform the work of the Resource Center, NGA is working with leading experts, practitioners, representatives from key state and federal agencies and representatives from private industry to develop resources and tools and to provide strategic recommendations on state cybersecurity issues.

Featured

The 2023 Cybersecurity Policy Advisors Network In-Person Convening was held on September 27-28th in Washington, DC. Hosted by the National Governors Association (NGA), the event convened the Cybersecurity Policy Advisors Network, including Governors’ advisors and state chief information security officers and other state cybersecurity officials, as well as NGA corporate partners, to share best practices and discuss cybersecurity challenges and strategies across a range of topics.

The Cybersecurity Policy Advisors Network (CPAN) serves as a forum for Governors’ advisors and state chief information security officers to share ideas and troubleshoot challenges with colleagues from other states, connect advisors with valuable resources and materials, and provide opportunities to hear from subject-matter experts via periodic calls, webinars and workshops. Members of the network are identified by Governors’ offices to speak to their Governor’s cybersecurity priorities. 

More than 90 participants, including 39 state representatives from at least 28 states and the District of Columbia, attended this event.

Learn more about the Convening here.

Policy Academies/Workshops

Meet the team

Focus Areas

  • Governance
  • Response Planning
  • Critical Infrastructure
  • Workforce Development & Education
  • State & Local Partnerships

NGA Cybersecurity Library

Q&A: Phishing

What is Phishing? Phishing refers to the criminal practice of using fraudulent emails to trick unsuspecting victims intodisclosing sensitive information or downloading malicious software (malware). Phishing messages are usually designed ...
Read More

Q&A: Internet-of-Things

What is the Internet-of-Things? The Internet-of-Things (IoT) describes how commercial industries are including Internet connectivity in a wide range of electronic devices that are traditionally thought of us “dumb,” such ...
Read More

Cybersecurity Podcast

Cybersecurity Podcast
A NGA series on cybersecurity featuring special guests with expertise across a range of cyber issues. The State of States’ Cybersecurity Terry McAuliffe | Former Governor, VirginiaRichard Clarke | CEO, ...
Read More

Cyber Liability Insurance for States

Perfect cybersecurity is impossible, and even the most sophisticated defenders fall prey to cyber attacks. This residual risk can potentially impose massive costs on an organization. Even mundane security breaches—a ...
Read More

Memo on State Cybersecurity Response Plans

This memo identifies commonalities and differences among 32 cybersecurity incident and disruption response plans within 26 states. A cyber incident typically refers to data breaches, stolen personal identifiable information, unauthorized ...
Read More

Memo on State Cybersecurity Budgets

Funding and sustaining cybersecurity initiatives is one of the fundamental challenges confronting state policy makers. A recent survey of states found that, on average, cybersecurity funding only accounted for three ...
Read More

Gov. McAuliffe: Cybersecurity Is Key State Issue

SAN JOSE, CALIF.—Today National Governors Association (NGA) Chair Virginia Gov. Terry McAuliffe delivered a keynote address on states' role in strengthening the nation's cybersecurity to protect critical infrastructure and personal data. "By ...
Read More

NGA 2017 Winter Meeting

NGA 2017 Winter Meeting
Session videos from the National Governors Association Winter Meeting 2017 which took place February 25 & 26 in Washington DC View Full Playlist ...
Read More

Cybersecurity

Preamble Governors recognize that the foundation of today's economy, national security and the daily operations of government are increasingly dependent upon the security and reliability of communications technology and other ...
Read More

Topic Areas

Governance

NGA Resources

External Resources

Response Planning

NGA Resources

External Resources

NASCIO Cyber Disruption Response Planning Guide

Critical Infrastructure

NGA Resources

External Resources

Elections Infrastructure Cybersecurity

NGA Resources

External Resources

Workforce Development & Education

NGA Resources

External Resources

State And Local Partnerships In Cybersecurity

“Cybersecurity is not just an ‘IT problem’ anymore. It is a critical business risk, homeland security and public safety threat, voter confidence issue and economic development opportunity. Cybersecurity requires commitment from state executives and officials to use all levers of state government to move forward.”

Read: STRONGER TOGETHER: State and Local Cybersecurity Collaboration

Additional Resources

Meeting Agendas

2022 National Summit On State Cybersecurity

2021 Fourth National Summit On State Cybersecurity

2019National Summit on State Cybersecurity – Shreveport-Bossier, LA

2017 National Summit on State Cybersecurity-Leesburg

2017 Meet The Threat: States Confront the Cyber Challenge Regional Summit-San Jose

2016 Meet The Threat: States Confront the Cyber Challenge Regional Summit-Boston

Cybercrime

NGA Resources

External Resources

Other Publications

External Resources