Virginia to get a full cybersecurity review
- By Derek Major
- Sep 03, 2015
With cybersecurity breaches happening across the United States and sensitive data being released, Virginia Gov. Terry McAuliffe is taking new steps to make sure Virginia citizens' personal information is protected.
According to the governor’s office, McAuliffe signed Executive Directive 6, which requires Virginia’s Information Technologies Agency (VITA) to provide an updated inventory of all data and computer systems across the state government and to recommend strategies to strengthen and modernize agencies’ cybersecurity profiles.
“A key ingredient to building a new Virginia economy is a solid cyber infrastructure,” McAuliffe said. “That is why it’s vital that the Commonwealth take the proper precautions to protect and safeguard the information entrusted to our care.”
The directive calls for an inventory that determines "the sensitivity and criticality of systems and data," the "risk prioritization and scope of systems and data" and helps the state to "develop a risk-based approach to enhance protection." The inventory is to be completed by Oct. 15, along with details on VITA's strategies for strengthening agencies' cybersecurity profiles. A subsequent progress report will be due in October 2016.
“Cybersecurity is a responsibility shared by every level of government,” Secretary of Technology Karen Jackson said. “These risk mitigation steps will allow the Commonwealth to take a more strategic approach to securing our systems and data.”
Derek Major is a former reporter for GCN.