Key Takeaways:
- Nevada CIO Timothy Galluzi led the state’s response to a major cyber incident in 2025, which resulted in the creation of a new cybersecurity office and a statewide security operations center (SOC).
- The state’s recovery efforts were collaborative and involved multiple agencies, vendors, and partners, with a focus on strengthening the environment, relationships, and communication channels.
- Nevada is prioritizing modernization, with a focus on enterprise resource planning (ERP) system modernization and the implementation of new technologies such as AI tools.
- The state is taking a pragmatic approach to AI regulation, balancing protection of vulnerable communities with a business-friendly environment.
- The SOC is expected to come online in 2026, and will serve as a vehicle to support communities with limited resources and provide a whole-of-state approach to cybersecurity.
Introduction to Nevada’s Cybersecurity Efforts
Nevada CIO Timothy Galluzi reflected on the state’s response to a major cyber incident in 2025, which he described as "one of the largest government cyber attacks that we have ever seen in Nevada." The incident led to the creation of a new cybersecurity office in July, which centralized the state’s cybersecurity strategy. Despite the challenges posed by the incident, Galluzi noted that the state’s recovery efforts were successful, with a collaborative approach involving multiple agencies, vendors, and partners. The state launched a recovery hub and made an after-action report to enhance public transparency, and lawmakers passed legislation to establish a statewide security operations center (SOC).
Recovery Efforts and Lessons Learned
The recovery efforts, which took place over a period of about 28 days, were notable for not paying the threat actor. Galluzi credited the state’s years of planning, investment, and strategy for positioning the state to quickly respond to the incident. The state’s approach involved bringing in as much support as possible, recognizing that the incident had ramifications beyond the Governor’s Technology Office and the state. The SOC is one example of the state’s efforts to strengthen its cybersecurity posture, and Galluzi noted that the center will serve as a "vehicle" to support communities with limited resources, such as rural areas, in a whole-of-state approach. The state has also shared lessons learned in its after-action report, including determining which products are and are not working for the state, and making shifts in identity management and moving toward zero-trust methodologies.
Modernization Efforts
In addition to cybersecurity, Nevada has been focused on modernization, with a particular emphasis on enterprise resource planning (ERP) system modernization. The state has made steady progress on the CORE.NV project, which involves replacing the legacy platform with a new system. The project has already seen the implementation of the core financial module, payroll, and human resources functionality, with further enhancements planned. Galluzi credited the CORE.NV team, led by director Brian Bowles, for their work on the project, which is expected to drive business transformation and improve the state’s use of technology. The state is also exploring the use of new technologies, such as AI tools, to drive efficiency gains and improve employee productivity.
AI Regulation and Future Plans
Galluzi noted that the state is taking a pragmatic approach to AI regulation, balancing protection of vulnerable communities with a business-friendly environment. The state is focused on setting appropriate guardrails for the executive branch, and has balanced laws that protect children and elections with a business-friendly environment. In 2026, Galluzi is eager to see the SOC come online, as well as the implementation of a modernized content management system and further work on the ERP. He noted that the state’s efforts in 2025 were just the beginning, and that 2026 will be a year of continued building and growth. With the SOC and other initiatives, Nevada is well-positioned to continue its progress in cybersecurity and modernization, and to provide a model for other states to follow.
Conclusion
In conclusion, Nevada’s response to the major cyber incident in 2025 was a significant success, with a collaborative approach and a focus on strengthening the environment, relationships, and communication channels. The state’s modernization efforts, including the ERP system modernization and the implementation of new technologies such as AI tools, are expected to drive business transformation and improve the state’s use of technology. With the SOC and other initiatives, Nevada is well-positioned to continue its progress in cybersecurity and modernization, and to provide a model for other states to follow. As Galluzi noted, "If 2025 was pretty busy and noteworthy for Nevada, I think 2026 is where we just continue to build off of that, and hopefully, we’re noteworthy for much bigger, better reasons."
:max_bytes(150000):strip_icc()/nick-reiner-Four-Sixes-Ranch-Steakhouse-Pop-Up-Grand-Opening-2024-121625-263b343d23bb4c2691a4171a27d3d6bb.jpg?w=300&resize=300,300&ssl=1 "Bill Hader Rejects Nick Reiner at Conan O’Brien’s Party")
