New York Gov. Kathy Hochul is launching New York’s first-ever statewide cybersecurity strategy, aimed at protecting the state’s digital infrastructure from today’s cyber threats. The strategy articulates a set of high-level objectives for cybersecurity and resilience across New York. It clarifies agency roles and responsibilities, outlines how existing and planned initiatives and investments knit together into a unified approach and reiterates the state's commitment to providing services, advice and assistance to county and local governments. New York State’s cybersecurity strategy provides public and private stakeholders with a roadmap for cyber risk mitigation and outlines a plan to protect critical infrastructure, networks, data and technology systems.
"Our interconnected world demands an interconnected defense leveraging every resource available," said Gov. Hochul. "This strategy sets forth a nation-leading blueprint to ensure New York State stands ready and resilient in the face of cyber threats."
The strategy unifies New York’s cybersecurity services in order to safeguard critical infrastructure, personal information and digital assets from malicious actors. It also provides a framework to align the actions and resources of both private and public stakeholders, including county and other local governments.
The launch of the strategy came during Gov. Hochul’s 2023 State of the State address. The historic $90 million investment for cybersecurity included in the Fiscal Year 2024 Budget made $30 million in shared services funding available to assist local governments in strengthening their own defenses against cyber threats. A part of the strategy includes providing $500 million to enhance New York State’s healthcare information technology, primarily cybersecurity infrastructure, as well as $7.4 million to expand the New York State Police’s Cyber Analysis Unit, Computer Crimes Unit and Internet Crimes Against Children Center.
“Our vision for unification, resilience and preparedness addresses the critical need for advanced resources and expertise across the state. We're ensuring every New Yorker is equally protected from digital threats,” said New York State Chief Cyber Officer Colin Ahern.
The state’s comprehensive cybersecurity strategy is defined by three central principles: Unification, resilience and preparedness. When taken together, New York State can lean on these tenets to present a unified and more resilient defense against new and more sophisticated cyber threats, preventing the vast majority of attacks, but also isolating, controlling and mitigating potential threats and preparing, adapting and always being ready for the cyber challenges of the future.
“Thanks to Gov. Hochul, cybersecurity is a priority in New York State – backed up by real funding, real human resources and a real strategy designed to protect the state’s assets from intrusion and attack. The Office of Information Technology Services is proud to be a partner in carrying out this important mission and knows it will result in cyber defenses that are better, stronger and more agile,” said Acting New York State Chief Information Officer Jennifer Lorenz.
Gov. Hochul also signed legislation to expand New York's technology talent pool and provide funding to help ensure New York-based employers are able to hire and retain necessary cybersecurity personnel. Gov. Hochul announcement was attended by recent graduates of the Metropolitan Transportation Authority’s (MTA) Operational Technology Cybersecurity Program.
“In recent years, MTA has made cybersecurity one of our top priorities. It is essential to ensure we can deliver service for the 6 million-plus commuters and travelers who depend on us every day,” said MTA Chair and CEO Janno Lieber.
