Information systems and technologies serve as a fundamental enabler for Government entities to meet their primary objective of serving citizens and enterprises in a secure manner, while protecting the confidentiality, integrity, and availability of sensitive information from exposure and misuse.
State and local governments need to properly align risks and information security, while at the same time they should balance the lack of adequate resources to implement their information security programs, based on the fact that the cost of protecting information and information assets should not exceed the value of the assets.
Government agencies collect, maintain and store huge volumes of sensitive information such as house tax records, social security numbers, credit card numbers, courthouse records, employee information and other personally identifiable information (PII), and have a responsibility for ensuring their safety and confidentiality, by managing the associated risks at all levels. In this regard, strict regulations and laws have been developed to assure governmental compliance and protect sensitive information and critical IT infrastructures from malicious attacks and compromises.
