Office of Information Security and Internal Controls 

image of padlock 

Office of Information Security and Controls is charged with enhancing the overall information security posture of the Executive Branch of West Virginia State Government.  Our goal is to reduce the overall risk to the data and the information systems that contain and process this data.  Supporting Privacy Regulations is an important component of the Information Security mission.

To guide our efforts, we focus on three different requirements for data and systems:

  1. Confidentiality: Exposing data only to those with a need and right to use.
  2. Integrity: Keeping data values accurate, and altered only by an authorized person.
  3. Availability: Maintaining systems and communications to acceptable operational status.

To maintain confidentiality, integrity and availability of data and systems, several types of controls are utilized:

  • Technical (e.g. firewalls, intrusion detection/prevention, anti-virus, NAC, etc.)
  • Administrative (e.g. policy, training, executive leadership, auditing, etc.)
  • Physical (e.g. id badges, door locks, security guards, surveillance cameras, etc.)

National Information and Cyber Security Awareness Month Event

.....In case you missed it, here's your chance to view the Cyber Security Awareness Month Event, which was held at the Culture Center on Monday, October 19, 2009!

2009 Cyber Security Awareness Month Webinar

Until November 15, we will be accepting evaluations for online and remote users. After viewing, return to this page to complete an evaluation form for a chance to win an autographed copy of Ira Winkler's book, "Zen and the Art of Information Security."

Evaluation Form

Governor's Proclamation
On September 26, 2008, Governor Manchin signed the “October is Cyber Security Awareness Month” Proclamation. Click on the link below to view:

2009 Cyber Security Month Proclamation


Data Protection and Classification
The following is a Data Protection and Classification White Paper from NASCIO:

Confronting the Realities of State Data at Risk

A How-To Guide for IT Security in Government
The link below is to an educational brochure by a vendor in the Information Security trade. Our posting of this brochure is based upon the value we believe that it provides to the reader. The posting of this information in no way serves as an endorsement for the company's products or services.

A How-To Guide for Information Security in Government

Privacy, Security and Accessibility | WV.gov | USA.gov | © 2009 State of West Virginia