Title:
FY18 Technology Reserve Funding Request
Summary
ACTION:
Appropriate $2,307,000 from General Fund balance to the technology reserve fund to accelerate the delivery of information technology security projects
Staff Contact: Keith Gregg, Chief Information Officer
Presentation: Yes
BACKGROUND/JUSTIFICATION:
Securing the business platform is a key objective of Mecklenburg County’s Information Technology Services (ITS) strategic business plan. After the December cyber incident, ITS implemented new security policies and practices and amended its strategic plan to improve system performance and increase the protection of County data. The revised plan accelerates the delivery of projects to address the ever-increasing cyber security threats and other risks to County systems.
For FY18, ITS has identified a need for an additional $2.3 million to fund projects that will strengthen HIPAA (Health Insurance Portability and Accountability) and PCI (Payment Card Industry) compliance, improve its ability to monitor security threats, reduce exposure to unsecured connections and unauthorized system access, prevent release of sensitive data during public information requests, and to improve employee awareness and response to email phishing and other cyber threats.
The funds will enable ITS to begin the following projects in FY18:
§ Security information and event management (SIEM) tool replacement
§ Data backup & recovery appliance replacement
§ Phishing alert & training system
§ Network vulnerability scanning
§ Network monitoring licenses
§ Network access controllers
§ Multifactor authentication
§ Active directory hardening
§ Public records request tool
§ Text messaging archiving
PROCUREMENT BACKGROUND:
N/A
POLICY IMPACT:
N/A
FISCAL IMPACT:
FY18 one-time funding of $2,307,000 will be transferred from General Fund (0001) fund balance to the Technology Reserve Fund (9009) and appropriated for use either in the current or subsequent fiscal years for purposes as described in the Technology Reserve Fund Ordinance.