Issue 150 - August 2024
NEWS: WORTHY
California JPIA Launches Cybersecurity Assessment Services for Member Agencies
After a successful pilot program, the Authority is pleased to announce the official rollout of expanded cybersecurity services available to all members. Following a competitive bid process that generated proposals from 12 potential vendors, two finalists were selected to participate in a pilot that provided cybersecurity assessment services to six members. Triden Group was selected as the successful bidder based on overwhelmingly positive feedback.
Feedback from member agencies involved in the pilot program included the following:
- The City of Chino Hills appreciated Triden’s responsiveness and the overall thoroughness of the final product, emphasizing that the project met the promised timelines and investment levels.
- The City of El Centro noted Triden’s exceptional communication and responsiveness. All deliverables met the agreed-upon timelines and quality expectations.
- The City of Commerce remarked on the extraordinary quality of work and the proactive communication from Triden, stating that the final product met and exceeded their expectations.
Business Value Delivered
All six participating member agencies reported substantial business value from the services. For instance, the City of Commerce expressed complete satisfaction with the business value delivered, noting that the insights provided by the assessments were instrumental in shaping their cybersecurity strategies.
We greatly value the participation and feedback of our member agencies during the pilot program. Their insights were essential in developing services tailored to meet our members’ specific needs.
Triden Group is based in Southern California and provides tailored, comprehensive cybersecurity solutions to address organizational challenges and achieve optimal outcomes. Triden leverages its repertoire of skills, software, and services to construct solutions to protect data, assets, and operations.
Members can now access cybersecurity assessment services provided by Triden. These services are fully funded by the Authority and include the following:
- Cybersecurity Maturity Assessment: This evaluation uses the National Institutes of Standards and Technology (NIST) Cybersecurity Framework (CSF) to evaluate member security controls and identify opportunities for improvement.
- Internal and External Vulnerability Scans: This scan detects vulnerabilities in member internal networks and public-facing assets and identifies opportunities for improvement.
The Authority has also negotiated preferred pricing and executed a Master Services Agreement (MSA) with Triden. Members can leverage the MSA (at their own cost) to engage Triden to perform cybersecurity services. Typical services include penetration testing, training, incident response tabletop exercises, implementation of cybersecurity improvements, and repeat cyber assessments.
To access these services or for more information, please contact your assigned regional risk manager.
The Authority also offers the following cybersecurity services to members:
KnowBe4
The Authority has negotiated preferred pricing for member access to KnowBe4’s security awareness training and phishing simulation platform. Key features include comprehensive training modules, unlimited phishing security tests, customizable email templates, and real-time security coaching. Members can obtain a quote using this link.
Eagle Eye
The cyber risk management platform includes a checklist to help avoid common security errors, an external website assessment tool, and a cybersecurity improvement progress tracker. It is designed to enhance member cyber resilience by offering detailed resources and support.
eRiskHub
eRiskHub is an online portal offering a suite of cyber risk management tools, including resources for incident response planning, cybersecurity training, and various cyber policy templates. This platform is designed to help members improve their cybersecurity posture and effectively manage cyber risks.
With the launch of these enhanced cybersecurity services, the Authority continues to support members in safeguarding their digital environments. Members are encouraged to contact their regional risk manager for additional information and guidance on how to access Eagle Eye and eRiskHub.
< Back to Full Issue Print Article