The Federal Government defines Information Security as, "The protection of information and information systems from unauthorized access, use, disclosure, disruption, modification, or destruction in order to provide confidentiality, integrity, and availability."  How is that accomplished?  Does your organization have a dedicated security team?  Do you meet your security requirements because your databases are behind a firewall?  In this session, John explains the timeline of how the State of Texas aligned with the Federal NIST Controls Standard (NIST 800-53r4) and how that affects information security in State Government and a brief glimpse of what’s to come.