IT Security

IT Security

DoITT ensures the overall security of the City's data and information technology assets through rigorous oversight and management of citywide security infrastructure. DoITT's IT Security Team also provides helpful information for individuals on security risks and how to avoid them, such as weak passwords, spear phishing, identify theft, and smartphone breaches.

The DoITT IT Security Division manages the Citywide Information Security Program. The program ensures the overall security of the City's data and information technology assets. DoITT provides security expertise and services to protect City data and IT assets through management of security infrastructure, policies, and standards. In 2011, DoITT worked with McAfee to deploy an integrated security network, consolidating desktop and service security on a single Citywide platform. This award-winning cloud solution now supports more than 80,000 computer systems from 52 City agencies. DoITT also maintains the overall security, including email, intrusion prevention systems, next generation firewall protection, security monitoring, and domain name system for over 60 agencies. Additionally DoITT ensures IT Security through the following program elements:

  • Performing information security audits of City agencies;
  • Advising management and technical staff on the security risks of network, application, and server implementations;
  • Designing and managing processes to facilitate risk mitigation and management;
  • Managing Citywide security infrastructure such as firewalls, Virtual Private Network (VPN), content filtering, and remote access;
  • Forming the core of the City's Computer Emergency Response Team, responding to emergencies such as penetration or compromise of the City's IT assets, whether through intentional misuse or network based worms/viruses;
  • Coordinating IT security and access requirements with other City agencies, the State and outside business partners of the City; and
  • Managing the Citywide Identity Management program.
For contractors and vendors doing business with the City, please be sure to visit DoITT's IT Security Policy page.