Home

Cyber Security

Security Program

Partnering with Everyone Counts, the leader in voter registration systems technology, SPW is developing a security program and supporting policies, based on the latest controls defined by the National Institute of Standards and Technology (NIST) and the Election Assistance Commission's Voluntary Voting System Guidelines (VVSG 2.0). This NIST-based security program is compatible with standards promulgated by other leading security protocols, and includes a security risk assessment, gap analysis, and road map for implementation.

 
SPW Partners on IT Cybersecurity Project  

SPW and its strategic partner, Coeur Business Group, have been engaged to conduct a state-wide IT security risk assessment of South Carolina’s technical college system.

The college system has sought the services to assist in a Security Compliance Assessment using NIST 800-53 rev. 4 and South Carolina’s own information security standard (SCDIS-200), and to provide a recommended Road Map and Costing for bringing each of their 17 Colleges into compliance with the State mandates. NIST 800-53 is the result of a Presidential Executive Order to protect the nation’s critical infrastructure framework and to maintain a cyber environment that encourages efficiency, innovation, and economic prosperity while promoting safety, security, business confidentiality, privacy, and civil liberties. An agency of the U.S. Department of Commerce, the National Institute for Standards and Technology issued cybersecurity policies in standard 800-53.

As an agency receiving Federal funding, the college system must meet mandates to protect individual privacy and civil liberties when conducting cybersecurity activities. The services of SPW and Coeur Group include:

  • Conducting a state-wide risk assessment and gap analysis
  • Reviewing existing policy, procedures and processes (PPP)
  • Conducting workshops on creation of compliant PPPs
  • Delivering draft PPP
  • Completing and validating NIST Framework worksheets
  • Delivering priorities NIST gap analyses
  • Facilitating a Roadmap Workshop with college Executives
  • Delivering recommended Cybersecurity Roadmap