Statewide Information Security Threat Management & Incident Response

The N.C. Department of Information Technology’s Enterprise Security and Risk Management Office operates a threat management team to raise awareness of cyberthreats and improve cyber incident response.

The team leads an initiative to increase awareness of cybersecurity issues in both state and local government within North Carolina by maintaining statewide contact lists and using them to forward timely warnings and alerts from the Multi-State Information Sharing and Analysis Center. The team also provides incident response training to state agency information security personnel.

The ESRMO offers computer forensic examination services to assist agencies in examining computers involved with state personnel misusing state-owned computers.

NC DIT and emergency management participated in the Department of Homeland Security national cyber exercises designated “Cyber Storm” (I, II and III) to test the capabilities of participating organizations to prepare for, protect from and respond to the effects of cyberattacks. The primary goal of these exercises was to examine the processes, procedures, tools and organizations in response to a multi-sector coordinated attack through and on, the global cyber infrastructure.

Cyber Storm events are examples of large government sponsored cybersecurity exercises, incorporating state, local, federal and international government, as well as private sector players.