My WebLink
|
Help
|
About
|
Sign Out
Home
Browse
Search
Cybersecurity Grant Program Agreement
>
Meetings
>
2025
>
01. January
>
2025-01-21 10:00 AM - Commissioners' Agenda
>
Cybersecurity Grant Program Agreement
Metadata
Thumbnails
Annotations
Entry Properties
Last modified
2/5/2025 1:25:46 PM
Creation date
2/5/2025 1:25:25 PM
Metadata
Fields
Template:
Meeting
Date
1/21/2025
Meeting title
Commissioners' Agenda
Location
Commissioners' Auditorium
Address
205 West 5th Room 109 - Ellensburg
Meeting type
Regular
Meeting document type
Fully Executed Version
Supplemental fields
Item
Request to Acknowledge FFY23 SLCGP (State and Local Cybersecurity Grant Program) Agreement E23-313
Order
10
Placement
Consent Agenda
Row ID
126584
Type
Grant
There are no annotations on this page.
Document management portal powered by Laserfiche WebLink 9 © 1998-2015
Laserfiche.
All rights reserved.
/
39
PDF
Print
Pages to print
Enter page numbers and/or page ranges separated by commas. For example, 1,3,5-12.
After downloading, print the document using a PDF reader (e.g. Adobe Reader).
View images
View plain text
Attachment D <br />WORK PLAN <br />FY 2023 State and Local Grant Proqram <br />PROJECT #X TITLE <br />Kittitas County Emergency Management is submltting this application on behalf of Kittitas County, At a hlgh level, this <br />appllcation outlines the cybersecurity needs based on assessments, audits, and evaluations of current systems. Our <br />projects lnclude the needs for off-site lmmutable backup, moblle and laptop device management, penetration testing, <br />and a program deslgned to detect, analyze, and respond to security threats of government data. Already in use in <br />Kittitas County is moblle device management on a very small and basic level. By upgrading our systems to include <br />managing mobile data more in depth as well as introducing laptop device management, we are building upon our <br />system to reach cybersecurity best practices. Kittitas County also currently has an immutable backup systern, <br />however, making that system off-site would add a new level of security. To continue building upon best practices and <br />security measures ln place, our project includes lntegrating a SIEM system that enables our lT professionals to <br />efficiently identify breaches and threats to our county network uslng a logglng system which we do not currently <br />have. As our lT professionals have collaborated, the lmplementation of these projects would be a stakeholder <br />approach for interoperabllity and maximal beneflt to all agencies. This grant would specifically pay for the installatlon <br />of Rubrik, an offsite backup solution, or similar, and to purchase Fortigate network firewalls, or similar, to improve our <br />VPN security. Thls would leverage the use of our Yubikeys for remote users to VPN. This ls the flrst step towards <br />Uslng the NCSR and CllS security systems yearly assessments, it was identlfied for best practlce purposes to <br />implement an off-site immutable backup system for disaster recovery ln additlon to the backup system currently ln <br />place, Utllizing the most recent CISA audlt, it was suggested to enhance penetration testlng being used by <br />stakeholders to ensure conslstent and periodlc phishing tests occur for cybersecurity safety. To contlnue to build on <br />systems ln place and close security gaps, a SIEM system would provide us with security logs to allow our lT <br />professionals to add a "fast and efficient" element to identifylng threats to our systems. Through devlce management/ <br />we can ensure device health and compliance wlth all network cellphones and la instead of just some <br />capa reats to protect <br />nt data. <br />as en ma m on <br />be able to enforce Yubi MFA for remote users. <br />IMPACT <br />Glving our stakeholders the means to expedite an off-site immutable backup system would vastly increase our whole <br />county's ability to recover from an event in which a catastrophic incident impacts the location where the backup <br />servers are currently being held. Long term sustainment of the SIEM will be planned for as well as the annual backup <br />and maintenance costs. ln the case of the mobile and laptop management program purchase, our lT professionals <br />would be able to conduct granulated control of updates and security measures over county owned electronics to <br />include laptops, a capabllitythey do not currently have, outside the county network. This program is subscriptlon <br />based, wlth the plan to put the subscription in the annual county budget moving forward with our plan of compllance <br />with best practices. Security information and event management (SIEM) would provlde the capabllity to save all logs <br />from every device on the county network to a database that enables lT to identlfy breaches and threats to the system <br />much faster than they can right now. Budgeting in the future after the initial costs from the grant also includes <br />renewals and support for the logging and penetration programs. This grant will assist in accelerating protectlon <br />against security vulnerabiltty by injecting the needed funding now instead of trickllng the funding ln over the next few <br />ln 202L, Kittltas County lT had penetratlon testing done by a third-party vendor that hlghliehted concerns that could <br />be addressed wlth this grant fundlng. The test findings included Kittltas County scoring at the highest risk level ln <br />access and control and lifecycle management, which ls an issue that could be resolved by the devlce management <br />piece of this project. Another finding included Klttitas County scoring at a mid-range risk level for detection and <br />investigatlon, whlch SIEM would directly focus on. When the project is complete, our lT professionals to have <br />DHS-FEMA-SLCGP-FY23 Page 35 of 39 Kittitas County Sheriff's Office, E25-313
The URL can be used to link to this page
Your browser does not support the video tag.