For states, grit and partnerships have become the modern equivalent of MacGyver's shoestrings and bubble gum when tackling technology challenges. With operational demands increasing and funding consistently scarce, improvisation alone may no longer suffice in the long term.While state CIOs and their teams continue to be remarkably resourceful, relying on patchwork solutions raises critical concerns about long-term sustainability. Partnerships and a robust strategy are no longer optional—they are essential. The May 2025, National Association of State Chief Information Officers (NASCIO) Mid-Year Conference upheld its reputation as a space for meaningful progress. Designed to foster relationships, the conference emphasized substance over spectacle. Public and private partnerships were built with a focus on innovation. Attendees engaged in deeper conversations and tackled real-world problems.The Rapid Pace of Threats in Cybersecurity and AIOperational demands on state technology teams continue to rise from multiple directions. Cyberattacks grow more sophisticated each year, and adversaries are increasingly capable. Individual states often face nation-state adversaries, presenting a modern version of border security in the digital realm.At the same time, Artificial Intelligence is transforming the field by offering powerful defensive tools to improve processes, analyze threats, and increase efficiency. Yet AI itself remains a double-edged sword, as system vulnerabilities can also be quickly exploited by adversaries unless robust defensive measures are in place. Discussions about AI at NASCIO centered on its integration into cybersecurity frameworks and training for the workforce on its proper use.Despite their dedication, state CIOs and CISOs are at risk of exhaustion as ongoing staffing shortages and limited resources take their toll. This period for cybersecurity professionals is reminiscent of the strain placed on emergency managers in the years leading up to Hurricane Katrina. In 2004, five hurricanes made landfall, leaving responders drained and resources stretched thin when disaster struck in 2005, with catastrophic consequences. This analogy underscores a critical message: preparation requires time, resources, and the foresight to anticipate rising demands.States are now at a pivotal moment, where teams must evolve not only the technical defenses in place but also the operational structures and hiring pipelines that support those defenses. Building both staffing and technical resilience is vital for weathering growing and more sophisticated attack vectors.Strategic Funding as a Cornerstone for ProgressPersistent underfunding has forced states to operate like players in an inefficient chess game, piecing together minimal base budgets, chargeback fees, and occasional end-of-cycle appropriations. This piecemeal approach only addresses high-priority, must-do projects and hinders a strategic, more cost efficient approach to technology and security.A well-funded and data-driven strategic approach ensures that states can align technology investments with their shared security goals—not simply react to crises but proactively enable sensible modernization. Given ongoing funding tensions, CIOs today might be forced to choose between moving forward with modernizing digital services like permitting and licensing or implementation of zero-trust architecture across the state enterprise. Having to choose is a dangerous premise, as both are equally critical investments essential for safely improving citizen services and supporting business ecosystems. When done together, efficiency and savings can be gained. This is an economic win in states with vibrant small and medium-sized business activities as seamless services translate into growth that benefits communities directly.Absent a comprehensive, well-funded plan, however, the impact seeps into everyday operations. Government services become unnecessarily cumbersome, vulnerabilities persist, gaps go unaddressed, and cyber attacks disrupt operations. These issues also impact municipalities and counties that rely on state infrastructure for critical needs like emergency response systems, education, and public health services.NASCIO leadership purposefully emphasized improved procurement practices and innovative cost models as topics that could drive clearer pathways to operational efficiency and fiscal transparency. This focus should inspire confidence as Congress considers the reauthorization and funding of the State and Local Cybersecurity Grant Program , which could serve as the catalyst for advancing vital initiatives at scale.Innovations Shaping the Future of State-Level TechnologyDriven in large part by the State and Local Cybersecurity Grant Program, which requires a federally approved plan to receive funding, states are conducting assessments on where they stand and where they need to go. Industry participants were clearly interested in being understanding and innovative partners by bringing their best tools to the conference. Meanwhile, states demonstrated a growing clarity in their plans for current and future programs.Both industry and government emphasized it is critical to take a technical approach that accounts for the evolution of both technology and security. Discussions focused on ensuring the responsible use of AI, determining which systems to modernize (and which to phase out), assessing the value of enterprise architectures, and prioritizing standards-based solutions. States explored not only technical capabilities, but also the broader cultural shifts needed to embrace rapid innovation responsibly.Participants focused on efficiency in discussions highlighting the trend to evolve from heavily customized systems to enterprise-wide architecture based on interoperability. The adoption of standards-driven solutions ensured the conference was forward-thinking, helping states envision platforms that align with current needs while remaining flexible for the future.These topics—and countless others requiring deep technical expertise—underscored the importance of collaboration and shared problem-solving. It was clear from conference discussions that states are not only ready to innovate, but also committed to building scalable solutions supported by reliable frameworks.Looking Ahead: Inspiration and the Path to OctoberThe breadth and depth of the NASCIO Mid-Year Conference provided a solid foundation to address ongoing challenges, and supported momentum leading up to the organization’s Annual Conference in October. Beyond tackling key themes, the conference reminded attendees why investment in technology matters for future generations. From the robot dogs showcasing advanced robotics, to the enthusiastic STEM students from Level Up Philly exploring potential careers, inspiration was in the air. NASCIO stands as a forum where both innovation and policy converge, ensuring its participants—both public and private—receive the focus they deserve.
↧