Information Security and Compliance

Liza Massey, Chief Information Officer, Information Services and Technology

About the Division

The Information Security and Compliance Division provides proactive risk and compliance services in the areas of Information Security, Digital Accessibility, and Enterprise Architecture. The division develops and implements IT policies, procedures, and standards and provides education, training, and awareness across the County. It also conducts audits and assessments, responds to incidents and complaints, and manages the County’s IT disaster preparedness and continuity of operations plans. The focus of this division in IST is to protect the County from potential threats and ensure compliance with all relevant laws and regulations.


IST Enterprise Architecture

Defines and manages a coherent, consistent approach to delivery of information technology capabilities for all County departments. The IT Enterprise Architecture program spans all aspects of IT business solutions delivery model including infrastructure, systems, applications, data, content, and user interfaces.

IST Digital Accessibility

The Digital Accessibility Team is responsible for providing digital accessibility to people across the County, both employees and the public.  Digital accessibility includes but is not limited to the procurement, development, and maintenance of websites, electronic media, documents, and mobile technology.  The team takes a systematic approach to support County digital materials for assistive technology users by utilizing accessibility testing tools, working with Assistive Technology, Subject Matter Experts, and providing training to those responsible for procuring, developing, and maintaining digital technologies.

IST Security

The Information Security Team is responsible for all aspects of Information Security at the County of Marin, including assets, systems, applications, data, workforce security, incident response, and disaster recovery planning. In addition to supporting technology, the team takes the approach that Information Security is every employee’s responsibility and provides security training, exercises, newsletters, and brown bag events to share information and increase security awareness across the County.

Marin CyberSafe News

Cyberattacks such as ransomware against government agencies, businesses, and individuals have become as common as spam messages. Cybersecurity issues impact everyone, and knowing what is real and what is a scam can be difficult to spot.

Stay up to date on the latest cyber threats and ways you can protect yourself and your family. , our monthly e-newsletter with cybersecurity tips, tricks, and best practices.

View the current newsletter and archives of previous newsletters.

Cybersecurity for Organizations

Is your organization ready to respond in the event of a cyberattack such as ransomware?  Now is a great time to prepare.  Read the County of Marin’s Top 10 Cybersecurity Recommendations for Organizations for helpful information to protect your organization, employees, and customers from bad actors.

Marin Security and Privacy Council (MSPC)

The Marin Security and Privacy Council was established as part of the Digital Marin Strategic Plan. The purpose of the MSPC is to facilitate the sharing of cybersecurity and digital privacy information, resources, and best practices in Marin, with the goal of increasing awareness and helping prevent cybersecurity incidents and breaches.

MSPC membership is free and available to all organizations that reside or operate within Marin County. For more information and to apply for membership, please visit the Digital Marin Web Site.