Projects
Washington State Enterprise IT Strategic Plan: Security for 2025–2027 - May, 13, 2025
We are pleased to present Washington State’s Enterprise IT Security Strategy. The result of an inclusive process that engaged technology leaders across the state, this strategy is a commitment to ensuring that every digital interaction with government is secure, every partnership strengthens our defenses, and every workforce investment builds a safer tomorrow.
News & Information
False Claims of Hacked Voter Information Likely Intended to Sow Distrust of U.S. Elections - Sept. 12, 2024
The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) are issuing this announcement to raise awareness of attempts to undermine public confidence in the security of U.S. election infrastructure through the spread of disinformation falsely claiming that cyberattacks compromised U.S. voter registration databases. Read more
The CISO's Desk
- Artificial intelligence: A new frontier (February 2024): In an era where digital threats are evolving at an unprecedented rate, various types of Artificial Intelligence (AI) systems have emerged as a crucial ally across all sectors (public and private) in the battle against cybercrime. The integration of AI in cybersecurity is not just an advantage, it has become a necessity ... (Read More)
- Information Security Awareness (January 2024): State policy mandates that every state employee receive annual cybersecurity awareness training. To aid that effort, OCS this year is rolling out a new, enhanced awareness program that will include required and optional video modules by InfoSec IQ and a monthly newsletter, just to list a few components ... (Read more)
- A year of progress (December 2023): As we reach my first-anniversary date here at WaTech’s state Office of Cybersecurity (OCS), I thought I would review some of what has occurred in the past 12 months. It has been quite a ride ... (Read more)
- Holiday shopping (November 2023): Once again, the holidays are upon us. Many of you will likely shop for gifts for family and friends online. Online shopping can be a convenient way to buy gifts, but it also comes with risks. Here are some things to remember to shop safely and securely online ... (Read more)
- Cybersecurity Awareness Month (October 2023): Since 2004, this nation has recognized October as Cybersecurity Awareness Month as a broad effort to help all Americans become safer and more secure online. Online risks have evolved and proliferated over the years, and Cybersecurity Awareness Month has grown dramatically in response, expanding the number of activities, presentations, and events. It has also spread beyond the borders of the United States to become an international phenomenon ... (Read more)
- Whole of state cybersecurity (September 2023): In a Whole-of-State strategy, the state government collaborates with smaller local governmental organizations to ensure everyone is protected from threats. As part of this collaboration, state governments share training, threat intelligence, tooling, and other resources with municipalities and other local organizations to strengthen cyber defenses ... (Read more)
- The journey to risk-informed compliance (August 2023): Many state agency leaders subject to Washington State IT Policy 141.10 (formerly OCIO 141.10) compliance requirements wonder how to apply risk assessment outcomes to their security practices. Compliance and risk management are essential tools for reducing the impact of threats. Organizations can achieve mission objectives and security by integrating these tools into a holistic framework ... (Read More)