Karen Sorady
Chief Information Security Officer
The Chief Information Security Office (CISO) is responsible for protecting the state government's cyber security infrastructure and providing statewide coordination of policies, standards, and programs relating to cyber security. The CISO provides cyber security leadership, governance and vision for the Office of Information Technology Services and the State.
CISO operates on the principles of collaboration and cooperation, and has developed partnerships at all levels of government and with the private sector to further its objectives. As part of the IT Transformation, the CISO oversees and coordinates security services provided to state agencies, and is building the capacity to provide the following core services:
- Information Security Governance, Compliance and Risk Management
- Incident Response
- Security Monitoring and Intelligence
- Vulnerability and Threat Management
- Penetration Testing
- Secure Systems Engineering/Architecture
- Security Policy and Standard Development
- Security Training and Awareness
- Portfolio Security Service Teams
Contact information:
Email: [email protected] (link sends e-mail)
Phone: (518) 242-5200