Skip to main content

Nationwide Cybersecurity Review (NCSR) is Open

SDAO is advocating for special districts to receive funds from the State and Local Cyber Grant Program.  To be eligible for the funds you must complete the Nationwide Cybersecurity Review (NCSR).  Please do not hesitate. It is not difficult to complete and your participation is not only important for your own district, but will be crucial for special districts as a whole getting a share of this statewide grant.

One of the requirements of the State and Local Cyber Grant Program (SLCGP), for those receiving funding, will be to participate in the NCSR. This is a post funding award requirement, but it’s encouraged that everyone start participating if they have not already.

The NCSR is an assessment that measures gaps and capabilities of cybersecurity programs. The NCSR is a no-cost, anonymous, annual cyber self-assessment. Individual assessment results are only shared with the individual entity, so specific information is private. Aggregate data may be used to help inform the SLCGP cybersecurity plan for Oregon. The data will help to focus resources and services in areas that need it most. It is open to all state agencies, local governments, tribal nations, and territorial (SLTT) governments and all are encouraged to participate. This is based on the National Institute of Standards and Technology Cybersecurity Framework (NIST CSF). NCSR opened October 1, 2022.

Benefits of the NCSR include:

  • Receiving metrics specific to your community to identify gaps and develop a benchmark to gauge year-to-year progress, as well as anonymously measure your results against your peers;
  • Attaining reporting and resources that can help you prioritize next steps towards desired cybersecurity improvement;
  • Gaining access to a repository of informative references, such as NIST 800-53, Control Objectives for Information and Related Technologies (COBIT), and the Center for Internet Security (CIS) Controls that can assist in managing cybersecurity risk; and
  • Fulfilling the NCSR assessment requirement for the Homeland Security Grant Program (HSGP), including the recently released State and Local Cybersecurity Grant Program (SLCGP):
    • To receive SLCGP grant funding, eligible entities will be required to participate in the NCSR post funding award; and
    • To aggregate NCSR data will inform Oregon’s SLCGP cybersecurity plan strategy and areas of focus.

New to the NCSR? You will need to complete the registration form on www.cisecurity.org/ms-isac/services/ncsr.

Returning participant? Please visit the NCSR portal at https://cis.my.logicmanager.com to login to the platform and access your information.

The NCSR is open until February 28, 2023.