A suite of services that strengthens organizational cybersecurity with reporting tools, actionable intelligence, training, and guidance for state and local State of Maryland entities.
Service Descriptions
Cyber Threat Intelligence (MD-ISAC)
This service produces timely, relevant, actionable cyber threat intelligence.
MD-ISAC’s Cyber Threat Intelligence (CTI) team analyzes cyber threat information from open and closed sources and prepare it for sharing across customer organizations. Sharing methods include threat bulletins, email digest reports, as well as a self-service CTI portal. In the event a domain abuse or organization (brand) impersonation with malicious intent has been confirmed, the MD-ISAC can initiate a takedown request to mitigate or reduce future risks.
For more details (including pricing, maintenance windows, and your responsibilities), please refer to the
"Maryland Information Sharing and Analysis Center (MD-ISAC) Cyber Threat Intelligence (CTI) Sharing and Collaboration Services" service agreement.
Individuals interested in joining the MD-ISAC should send an email request to
[email protected].
Security Awareness Training
This service teaches employees how to protect their organization's assets and data, and cultivates a culture of cybersecurity by providing the customer with engaging microlearning content and phishing simulations to test the effectiveness of the training. The DoIT security awareness team manages the configuration of the training platform and the enrollment of agency users in training.
For more details (including pricing, maintenance windows, and your responsibilities), please refer to the
“Security Awareness Training (SAT)” service agreement.
ISO Advisory Services
This service provides State agencies with access to cybersecurity professionals, specifically an Information Security Officer (ISO), who enhances security measures and ensures compliance with State and federal regulations. The ISO works with agencies to manage risks, implement controls, lead incident response efforts, and support policy development. Standard offerings include risk assessments, compliance coordination, incident management, and ongoing security advisory services, with actionable recommendations to strengthen defenses.
For more details (including pricing, maintenance windows, and your responsibilities), please refer to the
Information Security Officer (ISO) Program - Advisory & Compliance Services service agreement.
Next Steps