An official website of the State of North Carolina An official website of NC How you know

State Government websites value user privacy. To learn more, view our full privacy policy.

Secure websites use HTTPS certificates. A lock icon or https:// means you’ve safely connected to the official website.

Utility Menu

NCID Password Help
NCDIT Service Portal
Careers

Main menu

Services
Programs
Resources
About
News & Events
Support
Contact

Utility Menu

NCID Password Help
NCDIT Service Portal
Careers

Home
Programs
Cybersecurity & Risk Management
SolarWinds Impact Incident Management
SolarWinds Incident Management Questionnaire

SolarWinds Incident Management Questionnaire

Submitted by ichoyle on Fri, 02/12/2021 - 14:08

The North Carolina Joint Cybersecurity Task Force is seeking information from state, local and academic entities to help assess the state’s security posture in regard to the SolarWinds supply chain compromise.

Information shared as part of this process will be protected from public disclosure under N.C. G.S. 132-6.1(c). Private sector entities are encouraged to report cybersecurity incidents to the department (2015-241, s. 7A.2(b); 2019-200, s. 6(e)).

The Cybersecurity and Infrastructure Security Agency’s alert, AA20-352A: Advanced Persistent Threat Compromise of Government Agencies, Critical Infrastructure, and Private Sector Organizations, provides valuable guidance and actions to increase your security posture.

For more information:

North Carolina’s SolarWinds Incident Management
CISA Alert AA20-352A
Statewide Cybersecurity Incident Report Form (for reporting cyber incidents)

Indicates required field

Organization/Agency Name

Sub-Sector

Higher Education

K-12

Private Sector

Local Government

Municipal

State Agency

Does your agency/organization currently use any SolarWinds products?

Yes

Is your agency/organization currently running, or has it ever run, any version of the SolarWinds Orion product?

Yes

Please list the version(s) of SolarWinds Orion currently in use or previously used.

Have you, at any time, installed any of the following versions of SolarWinds (e.g. trial/POC etc.)? Select all that apply.

Orion Platform 2019.4 HF5, Version 2019.4.5200.9083

Orion Platform 2020.2 RC1, Version 2020.2.100.12219

Orion Platform 2020.2 RC2, Version 2020.2.5200.12394

Orion Platform 2020.2, 2020.2 HF1, Version 2020.2.5300.12432

Orion Platform Version 2019.4 HF 5

Orion Platform Version 2020.2

Orion Platform Version 2020.2 HF 1

Unsure

None of these

Do you need assistance in taking recommended steps outlined in CISA Alert AA20-352A?

Yes

Please provide the following information:

Your Name

Your Email

Your Phone Number

Have you verified that your vendors (third-, fourth-party, etc.), have not been impacted and/or have taken appropriate steps per DHS CISA to mitigate the risks?

Yes

If possible, please elaborate.

Additional Comments

This question is for testing whether or not you are a human visitor and to prevent automated spam submissions.

Contact Us

N.C. Department of Information Technology
P.O. Box 17209
Raleigh, NC 27619-7209

NCDIT Directory

Technical Support
NCDIT Service Portal
Chat Live with a Specialist
919-754-6000
800-722-3946

NCDIT Websites

Other websites maintained by the N.C. Department of Information Technology:

Division of Broadband & Digital Equity
Health Information Exchange Authority
Information Technology Services

Network Menu

nc.gov
Website Feedback
Accessibility
Disclaimer & Terms of Use
Privacy Policy
Open Budget

Hosted on Digital Commons