More counties are embracing voluntary cybersecurity frameworks to evaluate their risk and better protect their assets, a recent report shows.
County governments are reducing their cybersecurity risk levels by embracing voluntary standards, including those developed by the federal government, according to a report released last week.
Research from the National Association of Counties (NACo) and Accenture found that 50% of counties use the controls outlined in the National Institute of Standards and Technology’s (NIST) Security and Privacy Controls for Information Systems and Organizations special publication.
Meanwhile, almost 30% use either a bespoke state or county-specific framework, a cybersecurity maturity model certification program or the 27001 Maturity Model developed by the International Organization for Standardization and the International Electrotechnical Commission. Just over 20% said they do not use a standardized cybersecurity framework, while 18% said they do not know.
Route Fifty
By Chris Teale
JUNE 2, 2023