Texas DIR Program Highlights

“Only 31% of state agencies reported having more than one dedicated information security personnel, resulting in limited depth of knowledge and skills to build and maintain effective information security programs.” - Texas DIR 2020 Cybersecurity Report

Our March 2021 TAGITM’s Cybersecurity Committee’s (TAGITM C²) meeting with DIR leaders on their cybersecurity program and strategy to provide the depth and knowledge of skills our members need was impressive. This article shows the tip of the iceberg of value the DIR brings to our members in risk mitigation. Email DIRSecurity@dir.texas.gov for detailed planning information.

Texas established the Department of Information Resources (DIR) not only to vet software and hardware for their well-known approved contracts listings. They also developed programs to aid the Designated Information Security Officers (ISOs) and their incident response teams in implementing reliable best practices with valuable tools, resources, and programs. We are spotlighting their programs.

The primary functions of a board member overseeing cyber security include reviewing and guiding risk management strategies, incidence response policies and procedures, monitoring crisis plan implementation/performance, and overseeing the costs of cyber-attack prevention and deterrence. The depth of knowledge and skills needed for an effective plan are a known inherent risk for our local agencies. TAGITM C² understands that inherent risks are mitigated by planning prevention and response. The Texas DIR is a key resource in assurance to the board members and teams that our confidential information is protected based on a vast depth of knowledge and skills.

CYBERSECURITY INCIDENCE RESPONSE RECOMMENDATIONS
DIR’s Office of Chief Information Security Office (OCISO) will help you with guidance and finding resources during a cybersecurity incident.

Enterprise Relationship Management Team
Contact dirsharedservices@dir.tx.gov. You can provide them with essential information and contact that would be required during an incident response at no charge without a contract requirement.

Incident Response Team Redbook
The Incident Response Template (texas.gov) known as the Redbook was designed for agencies to use to build out an incident response plan and can be shared with the DIR so you can literally be on the same page when you make the call.

Making the Call for Assistance or Report an Incident
CYBERSECURITY INCIDENT RESPONSE AND ASSISTANCE HOTLINE (877) DIR-CISO (877-347-2476)
The phone is monitored 24 hours a day, 7 days a week. If no answer, leave a message and we will return your call as soon as we finish assisting the current caller. You can also email DIRSecurity@dir.texas.gov. This email box is routinely monitored by the entire team. DIR also recommends contacting MS-ISAC as another resource, 866-787-4722.

Managed Security Services Program
Want to have a skilled backup team on call to sleep better at night? The DIR offers standby services under their Managed Security Services (MSS) program that can be used for incident response and incident preparedness by entering into an inter-local agreement for their DIR Shared Technology Services program. This allows you to get access to hands-on resources that will be quoted at the time of the assistance request.

There is no upfront cost to get this in place; you are only billed if their services are needed. Billing is done on an hourly rate and may vary about 11% higher than the initial quote due to administration fees. Hourly rates can be found here: DIR-MSS-SCP-001 Attachment 4-A Service Provider Pricing Form updated per Amd 9.pdf (texas.gov).

Penetration Testing, Risk Assessments, and Web App and Vulnerability Scanning as a Service
Would you like for their second opinion to your entity’s plans? MSS also offers Penetration Testing, Risk Assessments, and Web App and Vulnerability Scanning as a service using an hourly rate – lower than standard rates. Currently, AT&T has the MSS contract for DIR. For more details on what services are available, you can contact Mark Hooper with AT&T, mh549m@att.com.

Data Confidentiality
One concern heard time and time again is what will DIR do with our data? Daniel Hankins,
the State of Texas Cybersecurity Coordinator, assured us that no data is shared with other state or federal agencies unless a direct request was submitted by an authoritative agency such as Homeland Security or FBI. Any information that is available under FOIA will be scrubbed of all sensitive information. He also noted that per statute, network security-related information is not disclosed.

The committee is excited to be your trusted cybersecurity resource!

Lindsay Rash
Education, TAGITM C²