Indiana Cybersecurity Hub

Governor Braun signs Executive Order, Indiana Executive Council on Cybersecurity Continues its Work, Completes State of Cyber Report 2021-2024

On January 13, 2025, Governor Mike Braun signed Executive Order 25-10, continuing the work of the Indiana Executive Council on Cybersecurity (IECC). Following on the Governor's action, the IECC recently approved its State of Cyber Report (2021-2024).

In addition to affirming Indiana's recognition, nationally, as a top-tier state for cybersecurity governance, the report vividly demonstrates the collective work of the Council, together with the contributions of the Indiana Department of Homeland Security (IDHS) and the Indiana Office of Technology (IOT) and the collaboration with numerous other state agencies and our federal partners, as well as those efforts involving local government, public and private sector, military, research and academic stakeholders.

The second part of the report is a collection of other cybersecurity initiatives in Indiana outside of the IECC. And while this is not an all-inclusive list, it is, again, an important reflection of the vibrant level of cybersecurity-related activity that’s occurring throughout our state. Click here to read the report.

Indiana Privacy Toolkit - FREE-To-Download Resource Helps Organization Gain a Better Understanding of Privacy, How It Works

The Indiana Executive Council on Cybersecurity (IECC) is launching its latest, FREE-to-download resource, with the release of its all-new Indiana Privacy Toolkit.

The purpose of the online toolkit is intended to help organizations gain a better understand of how privacy “works” and why it’s important. It is meant to be a step-by-step guide, with information tailored to fit the needs of a variety of small businesses and not-for-profit organizations, as well as local government.

Compiled by the Indiana Executive Council on Cybersecurity's (IECC) Privacy Working Group, the information in the Toolkit is drawn from the Group's members' knowledge and expertise in privacy and cybersecurity as leaders from the public and private sectors.

Think of it as your own, in-house privacy handbook, from which you can rely on to help you navigate through the challenges related to technology and cyber threats.

Personally Identifiable Information (PII) Guidebook 2.0 Helps Hoosier Businesses Identify 'Why' (and How) Protecting Someone's Personal Info Requires Protection   

In addition to the Toolkit, the IECC Privacy Working Group updated its PII Guidebook 2.0 to help provide Indiana businesses, small and large, with a more in-depth understanding of what constitutes "PII" (including how it's defined) as part of our daily lives, and what to look for, when it comes to identifying the information that requires a heightened degree of protection.

Newly Updated Cyber Guidebook Offers Local Government Officials Free "Go To" Resource for Protecting Critical Systems

This newly updated Cybersecurity for Local Government 2.0 Guidebook is designed to help local government officials and employees gain a better understanding for why cybersecurity is important, and it features an easy-to-understand and FREE-to-download guide for helping your staff, department or agency stay better protected when it comes to handling cyber threats. Producing the guidebook was accomplished thanks to a partnership involving the Indiana Chapter of GMIS International, Cybersecurity Infrastructure and Security Agency (CISA) and the Indiana Executive Council on Cybersecurity (IECC).

Updated Healthcare Cyber in a Box 2.1 Provides Three Levels of Expert Guidance for Keeping Operations Secure, Systems Protected

Updated with even more recommendations and best practices, Healthcare Cyber in a Box 2.1 provides organizations with three levels of expert guidance -- basic, intermediate, and mature -- involving 23 critical areas of cybersecurity -- as a FREE to download resource for creating even more of the systems needed for keeping your operations secure while, at the same time, helping to protect your patients and preserving both their digital, as well as physical, well-being.

Cyber Insurance Toolkit: 'Wealth' of Information for Managing Risk

The Cyber Insurance Toolkit is intended to help businesses and organizations understand what cyber liability insurance is, what it covers and why it's become an increasingly important part of a company's risk management strategy.  Drawing on the knowledge and expertise of insurance professionals and members of the legal profession, the Toolkit features a wealth of information from trusted sources -- everything from the types of questions to consider asking as part of an underwriting document to understanding how you can implement reasonable security controls (without spending a great deal of money) while, at the same time, exercising due diligence.

Cybersecurity for Education Toolkit 2.0 Offers Ideal 'Playbook' for School Communities

Just as cybersecurity is in every aspect of our everyday life, "cyber" is something that runs through our schools. Developed by the Indiana Executive Council on Cybersecurity (IECC), with support from the Indiana Department of Education and the Cybersecurity Infrastructure and Security Agency (CISA) and the U.S. Department of Homeland Security (USDHS), the updated toolkit is filled with a wide range of cybersecurity best practices, resources and tips for everyone in your K-12 school community.

Best of all, the Cybersecurity for Education Toolkit 2.0 is a FREE-to-download guide and we encourage everyone to use these materials. Share them with your colleagues, students, and others in your school community – as a turnkey resource; saving you precious time as you focus on the rapidly increasing challenges that are taking place in education as the school year gets underway.

In fact, we have created the toolkit as a PDF that can easily be saved as a Word Document that will enable you to cut and paste, copy and/or repurpose all the articles, images, and social media posts in the Toolkit 2.0 as needed.

Information Security Tip Sheet Offers Practical Guide for Protecting Indiana Businesses' Critical Systems

Developed by members of the Indiana Executive Council on Cybersecurity's (IECC) Finance Committee, Information Security Tips is a ready-to-use training guide for Indiana businesses, interested in protecting their organization's critical systems. Offering a practical, step-by-step approach, the recommended strategies and best practices -- as outlined in the materials -- were developed by cybersecurity and information security professionals, experienced through their work in state government, as well as the private sector with financial institutions, including banks and credit unions, from across Indiana. The 19-page guide is FREE to download.

Visit Our Indiana Cyber Blog & Follow Us on Social Media

Whether you're online at home, work, or school, or on social media, we invite you to visit and subscribe for FREE to our Indiana Cyber Blog, featuring the latest news, resources, and perspectives from cybersecurity experts, including some of the Hoosier State's leaders in cybersecurity and guest bloggers from federal, state and local government, as well as education and a wide range of businesses, industries and markets. And be sure to follow us on Twitter, Facebook, and LinkedIn. To review our Social Media Policy, click HERE.

Indiana Small Business Development Center Offers Free GCA Cybersecurity Toolkit to Protect Against Cyber Threats

The Indiana Small Business Development Center, a program of the Indiana Economic Development Corporation, is committed to providing Hoosier small businesses with easy to understand and ready to use resources that can help avoid or reduce the impact of cyber incidents. The GCA Cybersecurity Toolkit is a no-cost resource for small business owners as they improve their security. You can select from a wide range of tools to find the resources that best fit you and your business' needs.

Act Now to Protect Against Increased Cyber Attacks

As the nation’s cyber defense agency, CISA stands ready to help organizations prepare for, respond to, and mitigate the impact of cyberattacks. CISA’s Shields Up campaign webpage provides recommendations, products, and resources to increase organizational vigilance and keep stakeholders informed about cybersecurity threats and destructive exploits against critical infrastructure.

CISA's Shields Up site to provide the latest guidance and information to help organizations increase their resilience to cyberattacks and protect people and property. This robust catalog of free resources will be especially helpful today, as the cybersecurity threats facing the world have increased exponentially.

CISA’s Shields Ready campaign is about making resilience during incidents a reality by taking action before incidents occur. As a companion to CISA’s Shields Up initiative, Shields Ready drives action at the intersection of critical infrastructure resilience and national preparedness. This campaign is designed to help all critical infrastructure stakeholders to take action to enhance security and resilience—from industry and businesses to government entities at all levels, and even individuals by providing recommendations, products, and resources to increase individual and collective resilience for different risk contexts and conditions.  By taking steps in advance of an incident, organizations, individuals, and communities are better positioned to quickly adjust their posture for heightened risk conditions, in turn helping to prevent incidents, to reduce impact, and get things back to normal—or better—as quickly as possible. Being part of the resilience journey makes for more resilient people, organizations, and communities.