The Importance of a Enterprise IT Security Strategic Plan
Description
The panel discussion for the State of Washington Enterprise IT Security Strategic Plan will examine the purpose and development of this initiative, focusing on the challenges state agencies face in an evolving cybersecurity landscape. Insights from recent state agency workshops will be shared, covering key goal areas and emerging themes. Although the plan is still in development, the discussion will explore ideas to enhance cybersecurity resilience, align with state IT priorities, and address changing security threats. The event will emphasize collaboration across agencies and highlight how the plan aims to strengthen the state's security framework for mission-critical services.
Moderator
Ralph Johnson
Chief Information Security Officer
WaTech
Ralph Johnson oversees the Office of Cybersecurity and its team of cybersecurity experts who detect, block, and respond to cyber threats. The office also works to prevent and mitigate future risks through proactive steps to continually strengthen the state’s security posture.
Since 2005, Ralph has held several positions as CISO. He supported the Los Angeles Times and the San Diego Union-Tribune through his position as CISO of NantMedia Holdings LLC. He also has served as CISO of Los Angeles, CA and King counties. In King County, he held a dual role as King County’s Privacy Officer. His breadth of knowledge as a Holistic Information Security Practitioner (HISP) and with more than 28 years of experience in Information Technology provides a foundation of excellence in managing risk.
Panelists
Niles Friedman
Executive Advisor
Star Insights
Niles Friedman is an Executive Advisor with Star Insights. Across the last 15 years, he has emphasized public sector innovation, technology strategy, and digital transformation across the U.S. federal government, the State of California, the State of Washington, Los Angeles County, numerous cities, and international health ministries. He specializes in creating and growing businesses, divisions, and core functions within organizations. Through his work with C-suite executives, startup founders, public-sector administrators, boards, and nonprofit leaders, he's developed an adaptable approach to strategically collaborating across sectors, industries, and geographies.
Niles served as a Strategic Advisor to the CEO’s Office for Los Angeles County. In this capacity, he collaborated on a countywide technology strategic plan, a digital innovation function, and was part of the core leadership team that launched the County’s award-winning Analytics Center of Excellence.
Ralph Hogaboom
IT Security
Washington Department of Natural Resources
Ralph has worked with people and technology for state and local government for over 20 years, most recently in cybersecurity. He used to play in punk rock bands, and stays busy with cooking and baking, yoga, horror movies, and D&D. He has twice hosted the nationwide broadcast for national junior collegiate esports tournaments. He lives with his three cats and partner, and regularly texts his kids who are away at college (Go Vikings, Go Beavers!).
James McMurphy
Chief Information Security Officer
Health Care Authority in Washington
James McMurphy has been in the CISO role for five years. Prior to that, he served as the IT Security Architect for HCA for just over a year.
Before joining Washington state employment, James worked for a multinational chemical company for sixteen years, with eleven of those years spent in senior leadership roles in IT and Security.
A veteran of the US Coast Guard, James had the unique opportunity to sail to both the North Pole (Geographic) and Antarctica (twice) while stationed on the icebreaker USCG Cutter Polar Sea out of Seattle.
James is proud of the work that the Health Care Authority does for the most vulnerable members of the state and takes his responsibility to protect citizens' information very seriously.
Kim Hort
Deputy CISO Policy & Program Management
WaTech
Kim Hort is a seasoned government professional with over 17 years of dedicated experience in the public sector. She has served in various leadership roles, including two years as the IT Director for Cowlitz County, where she skillfully managed a team of 15 direct reports. Her expertise also spans five years of proficient management in IT Enterprise Resource Planning.
Currently serving as the WaTech Deputy CISO for Policy and Program Management, Kim plays a pivotal role in shaping the state’s cybersecurity landscape. She enjoys collaborating with IT teams, contractors, and subject matter experts to drive and sustain successful projects. Her demonstrated expertise includes safeguarding data integrity, providing strategic cybersecurity direction, and ensuring the stability of financial and human resource capital information systems operations.
________________________________________________________________________________
Recording
Slide Deck
________________________________________________________________________________