SolarWinds Incident Management Questionnaire
The North Carolina Joint Cybersecurity Task Force is seeking information from state, local and academic entities to help assess the state’s security posture in regard to the SolarWinds supply chain compromise.
Information shared as part of this process will be protected from public disclosure under N.C. G.S. 132-6.1(c). Private sector entities are encouraged to report cybersecurity incidents to the department (2015-241, s. 7A.2(b); 2019-200, s. 6(e)).
The Cybersecurity and Infrastructure Security Agency’s alert, AA20-352A: Advanced Persistent Threat Compromise of Government Agencies, Critical Infrastructure, and Private Sector Organizations, provides valuable guidance and actions to increase your security posture.
For more information:
- North Carolina’s SolarWinds Incident Management
- CISA Alert AA20-352A
- Statewide Cybersecurity Incident Report Form (for reporting cyber incidents)