When talking about cyber security, how hard is it in state government IT to keep up with the innovations of cyber-attacks?

It is extremely difficult and close to impossible to keep up because they are always running behind…The number [of attacks] in the public sector, government and higher education, far exceed any other sector, and that's because they are inherently open organizations. They're not a financial institution and they're not privately held…they are not discrete attacks as much as they are campaigns against entities. The bad actors mount a campaign against state of X and they will just go after that state and hammer that state with denial of service attacks. They'll try to breach their networks, and their attempts are literally millions a month. They are just looking for the next server with a new IP address to go after it…It is highly likely that a state is going to suffer a successful attack. It may not be a breach, it may be an incident…but that's an important issue with the states….A data breach is critical because they hold and trust more person identifiable information than any organization.