SolarWinds Incident Management Questionnaire The North Carolina Joint Cybersecurity Task Force is seeking information from state, local and academic entities to help assess the state’s security posture in regard to the SolarWinds supply chain compromise. Information shared as part of this process will be protected from public disclosure under N.C. G.S. 132-6.1(c). Private sector entities are encouraged to report cybersecurity incidents to the department (2015-241, s. 7A.2(b); 2019-200, s. 6(e)). The Cybersecurity and Infrastructure Security Agency’s alert, AA20-352A: Advanced Persistent Threat Compromise of Government Agencies, Critical Infrastructure, and Private Sector Organizations, provides valuable guidance and actions to increase your security posture. For more information: North Carolina’s SolarWinds Incident Management CISA Alert AA20-352A Statewide Cybersecurity Incident Report Form (for reporting cyber incidents) Indicates required field Organization/Agency Name Sub-Sector Higher Education K-12 Private Sector Local Government Municipal State Agency Does your agency/organization currently use any SolarWinds products? Yes No Is your agency/organization currently running, or has it ever run, any version of the SolarWinds Orion product? Yes No Please list the version(s) of SolarWinds Orion currently in use or previously used. Have you, at any time, installed any of the following versions of SolarWinds (e.g. trial/POC etc.)? Select all that apply. Orion Platform 2019.4 HF5, Version 2019.4.5200.9083 Orion Platform 2020.2 RC1, Version 2020.2.100.12219 Orion Platform 2020.2 RC2, Version 2020.2.5200.12394 Orion Platform 2020.2, 2020.2 HF1, Version 2020.2.5300.12432 Orion Platform Version 2019.4 HF 5 Orion Platform Version 2020.2 Orion Platform Version 2020.2 HF 1 Unsure None of these Do you need assistance in taking recommended steps outlined in CISA Alert AA20-352A? Yes No Please provide the following information: Your Name Your Email Your Phone Number Have you verified that your vendors (third-, fourth-party, etc.), have not been impacted and/or have taken appropriate steps per DHS CISA to mitigate the risks? Yes No If possible, please elaborate. Additional Comments
SolarWinds Incident Management Questionnaire The North Carolina Joint Cybersecurity Task Force is seeking information from state, local and academic entities to help assess the state’s security posture in regard to the SolarWinds supply chain compromise. Information shared as part of this process will be protected from public disclosure under N.C. G.S. 132-6.1(c). Private sector entities are encouraged to report cybersecurity incidents to the department (2015-241, s. 7A.2(b); 2019-200, s. 6(e)). The Cybersecurity and Infrastructure Security Agency’s alert, AA20-352A: Advanced Persistent Threat Compromise of Government Agencies, Critical Infrastructure, and Private Sector Organizations, provides valuable guidance and actions to increase your security posture. For more information: North Carolina’s SolarWinds Incident Management CISA Alert AA20-352A Statewide Cybersecurity Incident Report Form (for reporting cyber incidents) Indicates required field Organization/Agency Name Sub-Sector Higher Education K-12 Private Sector Local Government Municipal State Agency Does your agency/organization currently use any SolarWinds products? Yes No Is your agency/organization currently running, or has it ever run, any version of the SolarWinds Orion product? Yes No Please list the version(s) of SolarWinds Orion currently in use or previously used. Have you, at any time, installed any of the following versions of SolarWinds (e.g. trial/POC etc.)? Select all that apply. Orion Platform 2019.4 HF5, Version 2019.4.5200.9083 Orion Platform 2020.2 RC1, Version 2020.2.100.12219 Orion Platform 2020.2 RC2, Version 2020.2.5200.12394 Orion Platform 2020.2, 2020.2 HF1, Version 2020.2.5300.12432 Orion Platform Version 2019.4 HF 5 Orion Platform Version 2020.2 Orion Platform Version 2020.2 HF 1 Unsure None of these Do you need assistance in taking recommended steps outlined in CISA Alert AA20-352A? Yes No Please provide the following information: Your Name Your Email Your Phone Number Have you verified that your vendors (third-, fourth-party, etc.), have not been impacted and/or have taken appropriate steps per DHS CISA to mitigate the risks? Yes No If possible, please elaborate. Additional Comments
