GovernanceBoards & CouncilsMT-ISAC

Montana Information Security Advisory Council

NEXT MEETING

Date: TBA
Time: 1:00 p.m. to 3:00 p.m.
Location:  Capitol Room 152

June 12, 2019 Draft Meeting Minutes
June 12, 2019 Meeting Recording

The Information Security Advisory Council works closely with the Information Systems Security Office to enhance security for the State of Montana. For news and other cyber-security resources, visit: CYBERSECURITY.MT.GOV

 2019 MEETING DOCUMENTS

 

Meeting Date

Agendas and Documents

Minutes

February 12, 2019

Agenda

Minutes 

May 8, 2019

Agenda
C-IST Fact Sheet
CRR Fact Sheet

Minutes

June 12, 2019 Agenda  

 

2018 MEETING DOCUMENTS

Meeting Date Agendas and Documents Minutes
December 12, 2018 Agenda Minutes
October 10, 2018 Agenda Minutes
September 12, 2018 Agenda Minutes
June 13, 2018 Agenda

Minutes
Minutes Part 2

April 18, 2018

Agenda    

Minutes
February 14, 2018

Agenda
New MT-ISAC SharePoint Site

Minutes

Notice: The Department of Administration will make reasonable accommodations for persons with disabilities who wish to participate in the MT-ISAC's public meetings or need an alternative accessible format of this notice. If you require an accommodation, contact the Department of Administration no later than six business days prior to the meeting of interest, to advise us of the nature of the accommodation that you need. Please contact Joe Frohlich at (406) 444-3119 or click on the 'Contact Us' mailbox icon. Documents available on this site will generally be posted in PDF, but may include other formats as necessary.

Resources

Significant and continued growth of cyber-attacks against state and local governments makes cyber-security a critical issue for Montana. Recent events have increased the need to enhance security programs, processes, and support in this key area of business to protect citizen information. We protect against crimes on our streets; we must also work to defend Montana citizen information from cyber threats ranging from identity theft to consumer fraud to threats to our physical infrastructure.

Governor Steve Bullock signed an Executive Order to create the Montana Information Security Advisory Council (MT-ISAC) in June of 2015. The Governor appointed Council members from public and private sectors.  The Council’s objectives are leverage this public-private partnership to enhance cybersecurity information sharing, outreach and risk awareness to help effectively protect information systems across the state. The first official meeting was held August 19, 2015. To request membership or more information, please use the "Contact Us" icon.

Council Members
2017 Biennium MT-ISAC Goals and Objectives
Operating Procedures
MT-ISAC SharePoint Site
Archived Meeting Agendas and Minutes


MT-ISAC Approved Documents

Agency Security Policy Template, Approved October 2015

MT-ISAC Goals and Objectives, Approved November 2017

POL-Information Security Policy, Approved September 2015

POL-Information Security Policy - Appendix A (Baseline Security Controls), Approved September 2015

POL-Information Security Policy - Appendix B (Security Roles and Responsibilities), Approved September 2015

POL-Information Security Policy - Appendix C (Blocked Sites and Rules of System Usage forms), Approved September 2015

POL-Information Security Policy - Appendix D (Cyber Security Framework crosswalk to Baseline Security Controls), Approved September 2015

28 Rescinded Security Policies, Approved October 2015

Vulnerability Management Procedure, Approved November, 2016

Workgroup List
Disposal of Media Storage- Form, Approved June, 2016
Disposal of Media Storage, Approved June, 2016
Hardening of Devices, Approved February, 2016
Large Cyber Incident Handling Steps, Approved June 2016
Small Cyber Incident Handling Steps, Approved May, 2016
Cybersecurity Tips For International Travel
Identification and Authentication, Approved April, 2017
Acceptable Use of IT Resources with Acknowledgement Forms, Approved April, 2017

 


Additional Resources

NIST Cybersecurity Framework

NIST SP 800-53 Rev 4, Security and Privacy Controls

NIST SP 800-37, Risk Management Framework

State of Montana Policy Management System (MOM)


Blue mailbox contact us icon