Jefferson County, Alabama

IT Security

 

The Information Technology Services Security (ITSS) mission is to protect and maintain the confidentiality, integrity, and availability of information and IT assets within Jefferson County. The goal of the ITSS is to implement effective security controls and security operations protecting Jefferson County’s data and systems from cyber intrusions.

ITSS Responsibilities: 
  • Promote the awareness of information security to all County employees through training and education;
  • Prevent/minimize data leakage and disruptions to applications and network services;
  • Cyber Security incident management and response to threats;
  • Manage the risk of security exposure and compromise;
  • Monitor systems for anomalies such as asset misuse, loss, or unauthorized disclosure;
  • Ensure countywide compliance with State & Federal statutes and regulations

ITSS Core Services: 
  • Governance: Develop Information Security Policies, Standards, Guidelines, & Training
  • Risk Management: Risk Analysis, Vulnerability Assessment, and Penetration Testing
  • Compliance: HIPAA, HITECH, PCI DSS 
  • Cyber Security Operations: Security Monitoring, Breach Detection, Incident Management, Cyber Intelligence Situational Awareness, and Security Advisory Notifications