October is Cybersecurity Awareness Month. The Cybersecurity and Infrastructure Security Agency (CISA) and the National Cybersecurity Alliance (NCA) have led an effort between government and industry to raise cybersecurity awareness nationally and internationally since 2004. Your city or organization can join that effort by keeping your information secure.
The Kentucky League of Cities (KLC) recognizes the importance of cities protecting their data. KLC’s $1 million Cybersecurity Preparedness Grant helps KLC liability policyholders secure their information. Grant amounts can reach $15,000, and cities can use the funds for various preventative measures. Learn how to apply for the KLC Cybersecurity Preparedness Grant here. You can also download KLC’s brochure on improving your cybersecurity.
The Kentucky Office of Homeland Security (KOHS) announced on Tuesday that new cybersecurity grants are available for cities. The deadline to apply is Oct. 24, 2022. KLC partners with the Beazley Insurance Group to provide their Beazley Breach Insights website for our KLC Insurance Services liability members. Click here to learn how to log in with your KLC Insurance Services policy information.
CISA offers the opportunity for cities and other organizations to become a Cybersecurity Awareness Month partner. This year’s theme is “See Yourself in Cyber.” Partners help promote vital cybersecurity information and receive a Cybersecurity Awareness Month 2022 toolkit featuring sample social media posts, sample emails to send to employees, cybersecurity tip sheets, and more. Contact CISA to become a partner.
KLC offers these safety tips to help you avoid compromising your organization’s systems.
• Keep track of equipment, cell phones, tablets, and laptops.
• Update passwords periodically, use strong passwords, and never use the same password for more than one account.
• Utilize multi-factor authentication to access email, VPN, and other sensitive data.
• Do not open suspicious or unexpected emails, attachments, or links.
• Avoid browsing the web, opening social media, and conducting personal activity on company-provided equipment.
• Routinely assess security gaps and conduct tabletop exercises to identify potential gaps.
• Ensure data backups are stored remotely.
• Provide user training, including tests.
• Do not access secured or sensitive information using public Wi-Fi. Someone could be watching (electronically or visibly) everything you are entering to gain access.
• Be diligent. It only takes one unsecured entry point to compromise the house.
• Run spam filtering and malware protection software. Be sure to update this software periodically.
• If using Microsoft Outlook 365, ensure the Advanced Threat Protection add-on is purchased and consistently utilized.