Resources

As the digital landscape grows more complex, the threats facing state and local governments have multiplied. Traditional cybersecurity measures alone may not be sufficient to protect sensitive information from a broad array of cyber threats. To help manage these risks, the U.S. Department of Homeland Security (DHS) has allocated nearly $280 million through the Fiscal Year 2024 State and Local Cybersecurity Grant Program (SLCGP). This funding is designed to empower states and territories to bolster their cybersecurity programs, equipping them to identify vulnerabilities, detect emerging threats, and respond more effectively to incidents.

Several of our State and Local government customers have leveraged the SLCGP program to implement a digital risk program to protect their and their constituent's infrastructure. One State surveyed its municipal partners and found that the majority were looking for dark web visibility and digital risk support.

Digital Risk Protection provides state cybersecurity teams with deeper insights into external threats by monitoring illicit online spaces where threat actors often exchange or sell stolen data, discuss vulnerabilities, and share tactics.

Tabletop exercises (TTXs) are an essential tool in building an organization’s resilience to cyber threats, providing a controlled environment to simulate potential incidents. These exercises allow teams to test their responses, evaluate procedures, and identify gaps in their crisis management plans. However, simply going through the motions isn’t enough to ensure preparedness—effective TTXs must strike a balance between realism, adaptability, and learning outcomes.

In one of my recent TTX sessions, I introduced a new dynamic by priming AI to provide real-time injects, adding a level of unpredictability and immersion to the exercise. The result was a more engaging and challenging experience for the participants, ultimately improving their response planning. In this blog, I’ll discuss the elements that make a TTX effective and highlight the benefits of using AI for injects in real-time scenarios.

Automation is a key tool in defending organizations from digital threats, but it has its limitations. Even with advanced technology, up to 80% of security alerts can still be false positives. This is where Human Intelligence (HUMINT) becomes essential in Digital Risk Protection Services (DRPS). HUMINT provides the context and insight that automated systems often miss, turning raw data into actionable intelligence. By combining automation with human expertise, DRPS can more effectively respond to current threats and stay ahead of evolving risks, creating a balanced and proactive approach to digital security.

A 2020 study on US consumers and cybercrime recorded nearly 1,500 significant data breaches in 2019 resulting in the exposure of more than 164 million sensitive records. Meanwhile, one executive of a major US accounting firm argued that 2020 may be one of the most fraud-rich environments in our nation's history.