Print Back to Calendar Return
AI- 48208
Commissioners Court
Meeting Date: 03/23/2020  
Consent to Apply for UASI Grant
Submitted By: Steve Ganey
Department: Information Technology  
Request Type: CONSENT Agenda Area: Miscellaneous

Information
Department Action
Right now, end-users are under attack, 93% of all successful cyber attacks start with a phishing email. Hackers and threat groups target end-users on the network to gain a foothold and, from there, use several tactics and techniques to maintain persistence and spread across the network. The Election Department currently uses antivirus (AV) to protect election computers, which uses signatures to identify known viruses/malware. AV provides a valid and useful service; however, hackers and threat groups are continually modifying their malware, so AV providers are always playing catchup. The hacker's toolset includes built-in windows applications, fileless attacks, and many more that traditional AV doesn't detect.
 
This means the Election Department is left vulnerable and unable to detect most current threats. They are not just at risk to advanced groups that use zero-day exploits. Without better detection, the Election Department is at risk of being compromised by commodity malware easily accessible on the internet.
 
Managed detection and response (MDR) services fill this cybersecurity gap. MDR is a 24/7 threat monitoring, detection, incident analysis, and response service that correlates specific threat intelligence and telemetry collected from the Election Department's environment. MDR utilizes endpoint detection and response (EDR) client software as well as network and threat intelligence to facilitate effective outcomes.   Combining improved detection with a 24/7 security operations center (SOC) to monitor and respond to threats, MDR services will significantly improve the security posture of the Elections Department.
 
Purchasing Department Action
 Purchasing policies and procedures will apply.
HR and/or IT Action
Budget Department Action
FY 2020 Election Cybersecurity Grant in the amount of $39,104.60. No County match required. Grant funds will cover Managed Detection and Response (MDR) Services. Grant period is October 1, 2020 through September 30, 2021.
Auditor's Office Action
Grant documents have been reviewed by the grant review committee as per attached. Grant is for end-users are under attack, 93% of all successful cyber attacks start with a phishing email. Antivirus (AV) is currently used by Election Dept. which leaves us vulnerable and unable to detect most current threats. Manager Detection and Response (MDR) services will fill this cyber security gap. Federal grant funds in the amount of $39,104.60 with no county match required. Grant period is 10/1/2020 through 9/30/2021.
Commissioners Court
Grant application for the FY2020 Election Cybersecurity through the Office of the Governor, Homeland Security Grants Division, Information Technology.

Budget Information
Information about available funds
Budgeted: Funds Available: Adjustment: Amount Available:
Unbudgeted: Funds NOT Available: Amendment:
Account Code(s) for Available Funds
1:
Fund Transfers
Attachments
Court Order
Cyber Security
Resolution
Grant Summary Forms
Grant review committee form
Application

AgendaQuick©2005 - 2024 Destiny Software Inc., All Rights Reserved