The need for information security has never been higher than it is right now. High profile news stories of network intrusions, personal data theft and cyber vandalism are now regular occurrences. Contra Costa County operates computer systems containing vast amounts of information and provides many on-line services to the public. This data and these services must be secured and planning put in place to ensure that they continue to operate in emergency situations. However, over the last several years our Information Security program has been all but eliminated by layoffs, retirements and staff leaving for better pay at other agencies. As a result, we have zero dedicated Information Security professionals on staff. We do not have the resources to properly perform internal risk assessments, disaster recovery plans or business continuity plans. State agencies such as the California Department of Motor Vehicles have stringent security requirements in order to access their systems as well. We must increase our security levels to protect private constituent information and to ensure the continued operation of our services. Loss of access to DMV information would impact multiple County departments. Infosec Professionals will assist the Department of Information Systems to ensure that we meet their strict requirements and to identify other areas of risk and to plan for how to mitigate them.  
  
In accordance with Administrative Bulletin No 611.0, County Departments are required to obtain Board approval for single item purchases over $100,000. The County Administrator’s Office has reviewed this request and recommends approval.