Enterprise Security Board
In May of 2001, the Commonwealth established the Enterprise Security Board (ESB), a volunteer-supported organization created to develop a Commonwealth-wide approach for securing and managing information. The ESB works to develop and recommend enterprise security policies, standards and guidelines designed to ensure the confidentiality, integrity and availability of the Commonwealth’s IT resources. The ESB’s efforts comply with all applicable legal requirements and are consistent with generally accepted IT governance, control and security objectives and practices. The ESB’s mission includes educating, communicating and promoting generally accepted IT management and control practices.
The ESB is chaired by our Commonwealth Chief Information Security Officer and the Director of Management Information Systems for the Massachusetts Water Resources Authority. It is comprised of members from the Executive, Judicial, and Legislative branches; constitutional offices; authorities; and representatives from large cities and towns. ESB standing committees include Strategy & Planning, Research, Education & Awareness, Variance, Standards, and the Massachusetts Information Sharing & Analysis Center (MS-ISAC).