Orange County NC Website
Browse       Search
113 <br /> Orange County IT takes a multi-layered approach regarding enterprise security and data loss <br /> prevention to protect against internal and external threats. <br /> • Perimeter security is handled by employing state of the art firewall(s), and intrusion detection <br /> and prevention systems as well as email scanning prior to email being delivered to county <br /> servers for processing. <br /> • Multifactor authentication is used for user device access to network resources. <br /> • VPN and virtual desktop technologies are deployed for secure and managed remote access. <br /> • The principal of least privilege access is used for all uses both common and administrative. <br /> • Beyond the perimeter all network traffic is monitored north, south, east and west.Appropriate <br /> alerts are configured for anomalous behavior. <br /> • Network traffic is segmented to prevent the risk of cross contamination during security events. <br /> • Multiple security incident/information and event management strategies are used, i.e., SIEM <br /> technology to monitor server and device events. <br /> • File level access and permissions are systematically audited on access to comply with various <br /> compliance and standards requirements. <br /> • Along with typical nightly, weekly and monthly backups routines, data is sent off site and <br /> database data is stored immutably in the cloud. <br /> • Next Generation end point detection and response is deployed across the enterprise with <br /> dedicated third-party staff reviewing incidents as they occur, 24 hours per day, 365 days per <br /> year. <br /> Orange County Information Technologies' multi-layered approach includes mandatory security <br /> training for all employees that access the network as well as having an IT Security Officer to review and <br /> create appropriate security policies and procedures. <br /> PENSION PLANS <br /> The County participates in the North Carolina Local Governmental Employees'Retirement System <br /> ("LGERS"). LGERS is a service agency administered through a board of trustees(the"Board of Trustees") <br /> by the State for public employees of counties, cities,boards, commissions and other similar governmental <br /> entities. While the State Treasurer is the custodian of system funds, administrative costs are borne by the <br /> participating employer governmental entities. The State makes no contributions to the system. <br /> The system provides, on a uniform system-wide basis, retirement and, at each employer's option, <br /> death benefits from contributions made by employers and employees. Employee members contribute six <br /> percent of their individual compensation. Each new employer makes a normal contribution plus, where <br /> applicable, a contribution to fund any accrued liability over a 24-year period. The County's contractually <br /> required contribution rate for fiscal year 2024-25 was 13.65%of eligible payroll for general employees and <br /> 15.10% of eligible payroll for law enforcement officers ("LEO"). The County's contractually required <br /> contribution rate for fiscal year 2025-26, is 14.38% of eligible payroll for general employees and 16.08% <br /> of eligible payroll for LEOs. The accrued liability contribution rate is determined separately for each <br /> 40 <br />