The Office of Information Security (OIS) operates independently from network and information technology operations and is managed by the Chief Information Security Officer (CISO), who reports directly to the Chief Information Officer. OIS establishes and maintains the enterprise vision, strategy, and program to ensure the protection of information assets and technology. As part of its service delivery, OIS oversees a comprehensive state information security program that includes continuous monitoring, vulnerability scanning, security incident response coordination, physical security access services, and other operational security services for the Executive Branch. The OIS staff identifies, develops, implements, and maintains enterprise security processes to mitigate information technology risks. The CISO directs responses to incidents, establishes standards and controls, manages security technologies, and implements policies and procedures. Additionally, the CISO chairs the State Information Security Committee, serves as vice chair of the Nevada Cyber Security Task Force, and is a member of the Nevada Resilience Advisory Committee and the National Governors Association Cybersecurity Policy Advisors Network. Statutory Authority: NRS 242.