Kentucky State Treasury Newsroom
Treasurer Hollenbach Works with State Auditors to Maintain A

Press Release Date:  Wednesday, February 04, 2015  
Contact Information:  Mark Pfeiffer 502-564-8860
Bethany E. Goad 502-564-8821

In an effort to ensure that Kentucky State Treasury is technologically secure, Treasurer Hollenbach and his staff have worked closely with state auditors to identify the areas in which improvements can be made to increase cyber security.

“Our review shows that we have developed the necessary security plan to properly protect sensitive information,” stated Treasurer Hollenbach.  “Unfortunately, state budget constraints have slowed our ability to see the completion of that plan.”  Treasurer Hollenbach continued, “This isn’t an uncommon problem with state agencies. Computer technology is progressing at an unfathomable rate.  Unfortunately, the advances made by those who would use technology for their own nefarious purposes are progressing almost as rapidly.”

While Kentucky State Treasury has developed the proper plan for taking security measures to protect any intentional or unintentional access or misuse of information, the state budget has not fully allocated the funds to complete those measures.
“We’re pleased to have added a highly experienced Network Analyst to our staff who has worked with Department of Defense level encryption and security,” said Treasurer Hollenbach. “And our IT division’s first priority is protecting Treasury from cybercrime.”

In addition to having added a new Network Analyst III to its IT staff with extensive experience in Department of Defense level encryption and .Mil network security, Kentucky State Treasury has also further separated employee computer information access to ensure that no single individual has complete access to financial processes or information.  Kentucky State Treasury has been working with the Commonwealth Office of Technology to perform password security tests, to ensure staffs are consistently changing passwords and all passwords maintain “anti-hacking” standards.