Who is a member?
Our members are the local governments of Massachusetts and their elected and appointed leadership.
The MMA hosted a webinar on Oct. 15 on the minimum cybersecurity goals for municipalities.
Panelists said local governments are attractive targets for cyberattacks, so it’s crucial to understand and prevent common threats.
The MassCyberCenter has established a minimum baseline for cybersecurity for Massachusetts municipalities. Meg Speranza, the MassCyberCenter’s resiliency program manager, said the initiative aims to enhance the municipal cybersecurity posture and safeguard networks and data from cyberattacks.
The four goals are:
• Trained and cyber-secure employees
• Improved threat sharing
• Cyber incident response planning
• Secure technology environment and best practices
Susan Noyes, director of the state’s Office of Municipal and School Technology, discussed the state’s free Municipal Cybersecurity Awareness Program, which provides assessments, online modules, phishing campaigns, and other resources to municipalities and staff.
John Petrozzelli, director of the MassCyberCenter, shared some best practices for making municipal technology more secure. These include implementing multi-factor authentication, conducting annual vulnerability assessments, and prioritizing IT upgrades.
Speranza moderated 15 minutes of questions and answers, addressing inquiries regarding cybersecurity grants, man-in-the-middle attacks, and training opportunities available to county governments.
• Cybersecurity: Staying ahead of threats balancing people, process and technology presentation (3.5M PDF)