State Government Resources

Information & Risk Management Services

State Information Security Policies

Statewide IT Policies & Forms

Reporting Cyber Incidents to the State

Tips & Guidance

Active Vulnerabilities & News

See the latest cybersecurity alerts, news, and newsletters.
More Blog Entries

Featured Videos

Cybersecurity & Phishing Scams

Cybersecurity & Passwords

Cybersecurity & Multifactor Authentication

Enterprise Security & Risk Management Office

About the ESRMO

The N.C. Department of Information Technology’s Enterprise Security and Risk Management Office, or ESRMO, supports the state CIO by providing leadership in the development, delivery and maintenance of a cybersecurity program that safeguards the North Carolina’s information and supporting infrastructure against unauthorized use, disclosure, modification, damage or loss.

ESRMO Initiatives

To support agencies’ efforts to improve their information security and risk management posture, the state helps define and implement the enterprise security and risk management initiatives coordinated for the state chief information officer by the N.C. Department of Information Technology’s Enterprise Security and Risk Management Office.

Reporting Cyber Incidents to the State

Reporting cyber incidents as they occur is a method to reduce the risk to citizen-facing services and sensitive data. Learn more about how to report and how the state responds.

Contact

Enterprise Security & Risk Management Office
P.O. Box 17209
Raleigh, NC 27619-7209

Telephone
919-754-6000
800-722-3946