Information security programs in the public sector are required to overcome substantial, unique difficulties, in addition to addressing those same challenges faced by their counterparts in the private sector. Statewide public-sector information security programs must be broad enough to address control sets from myriad regulatory requirements, properly and effectively secure a wide range of data types, support the business processes and work flows of dozens of agencies (each with their own mandates and requirements), and adapt to the changes in direction and priority that a regular election cycle may bring. The cornerstone of the State of Nevada’s approach to information security is the building of collaborative partnerships, both within the state government and beyond. It’s focused on open, clear communications and the use of existing tools to support ongoing needs.