Get Full Government Meeting Transcripts, Videos, & Alerts Forever!
State CISO outlines assessments, targets and projects as Oregon moves to stricter cybersecurity standards
Summary
The state’s chief information security officer briefed the General Government Subcommittee on May 14 on assessment results, mitigation priorities and several multi‑year projects aimed at raising agency cybersecurity posture.
The state’s chief information security officer briefed the General Government Subcommittee on May 14 on assessment results, mitigation priorities and several multi‑year projects aimed at raising agency cybersecurity posture.
Ben Gurizgeir, state chief information security officer, said Enterprise Information Services (EIS) uses Center for Internet Security (CIS) controls (version 8) as the baseline and now requires agencies to meet 70% of the first 56 safeguards; the goal is to reach higher maturity and expand adoption of the full control set in the next two to three years.
"We complete assessments of every state agency board and commission in a biennium," Gurizgeir said. He told the committee EIS is scheduling CIS assessments, web application…
Already have an account? Log in
Subscribe to keep reading
Unlock the rest of this article — and every article on Citizen Portal.
- Unlimited articles
- AI-powered breakdowns of topics, speakers, decisions, and budgets
- Instant alerts when your location has a new meeting
- Follow topics and more locations
- 1,000 AI Insights / month, plus AI Chat
