I Want To Departments & Agencies
News Events Employment

Information Systems Department

Innovation Services & Special Project
County Of Sonoma Administrative Support & Fiscal Services Information Systems Divisions Innovation Services & Special Project Cybersecurity
Innovation Services & Special Project

Cybersecurity

The Cyber and Information Security Team at The County of Sonoma plays a vital role in protecting the County’s IT environment, helping to keep the systems and data relied upon by departments, employees, and residents secure and dependable.

We work behind the scenes to identify risks, monitor for signs of cyber threats, and respond swiftly when vulnerabilities or suspicious activity is detected. Our proactive approach helps prevent disruptions to county services and supports a stable technology environment for everyone. We stay closely connected with trusted partners across the state and nation to remain current on emerging risks, and we use a range of tools to quickly assess, verify, and address issues as they arise.

We also provide guidance and support to departments across the County, helping them understand potential risks and make informed decisions that keep systems resilient. Whether we’re responding to incidents, verifying the integrity of systems, or improving our preparedness, our team works to support the safe and reliable use of technology throughout Sonoma County.

What we do to protect your Information 

  • Governance, Risk & Incident Management 
    Oversees cybersecurity governance and manages cyber threats—identifying risks, enforcing policies, and leading incident response to safeguard County IT infrastructure.

  • IT Resiliency & Business Continuity 
    Ensures critical systems and data remain available during emergencies (disasters or cyberattacks), enabling rapid recovery and minimal disruption to county services.

  • Disaster Recovery Planning 
    Designs strategies to restore vital systems, infrastructure, and data following events that disrupt normal operations—both natural and human-induced.

  • Infrastructure Security & Monitoring 
    Implements security safeguards across networks and systems (like firewalls, intrusion detection, VPNs, and Active Directory), ensuring ongoing monitoring and protection of digital infrastructure.

  • Risk Assessment & Business Impact Analysis 
    Conducts assessments to identify vulnerabilities and potential impacts, establishing a baseline understanding of threats to guide security investments and planning.

  • Strategic Realignment of Cybersecurity Program 
    Restructures the cybersecurity function within ISD—reallocating staff and defining clear roles to strengthen focus and effectiveness.