STATE CHIEF INFORMATION OFFICER

INVESTMENT & GOVERNANCE DIVISION

INFRASTRUCTURE SERVICES DIVISION

DIGITAL GOVERNMENT

CONTACT OIT

State of Ohio IT Rules, Directives, Policies,

Standards, Procedures & Bulletins

About Us

Enterprise IT Architecture & Policy Home

IT Policy Management Section

IT Standards Management Section

IT Law & Policy Section

Resources

Rules, Directives, Policies, Standards, Procedures & Bulletins

Enterprise IT Architecture & Policy News

Electronic Signature Rule

Policy Resources

Standards Resources

Please Note

To view information in portable document format (.pdf), you must have Adobe Reader installed on your computer. Click here to download a free copy of Adobe Reader.

To view information in MS Word, you must have MS Word 2003 or later or Word Viewer 2003 installed on your computer. Click here to download a free copy of Word Viewer 2003.

RULES DIRECTIVES POLICIES STANDARDS PROCEDURES BULLETINS

Click the links above to go to the section of this page on Ohio's IT-related statutes and administrative rules; the Governor's orders and directives; or enterprise IT policies, standards, procedures or bulletins.

This site is the official register of State of Ohio information technology (IT) policies, standards and bulletins and OIT enterprise procedures. In addition, the Enterprise IT Architecture & Policy program publishes Ohio IT statutes and administrative rules on this page as a convenience to state agencies. Statutes are referred to as the Ohio Revised Code (ORC), and administrative rules are referred to as the Ohio Administrative Code (OAC).

Recent Additions

New publications added since April 6, 2009, include the following:

Governor's Management Directive: Accessing Confidential Personal Information Maintained by the State (04-06-2009)

ORC 1347.15 Implementation Plan Template (.doc)

Ohio IT Statutes & Administrative Rules

Office of Information Technology

Uniform Electronic Transactions Act

State Agency-Specific Provisions

State agency provisions

Rules for state agency use of electronic records or electronic signatures

Exemptions to public records laws

Administrative Rule on Electronic Signatures

Use of Electronic Signatures and Records

Important additional information

Personal Information Systems

Governor's Orders & Management Directives

Accessing Confidential Personal Information Maintained by the State (.pdf)

ORC 1347.15 Implementation Plan Template (.doc)

State of Ohio IT Policies

IT Governance Policies — A Series

Authority of the State Chief Information Officer to Establish Policy Regarding the Acquisition and Use of Computer and Telecommunications Products and Services (.pdf)

ITP-A.5 RESCINDED Software Copies and Copyrights (.pdf)

Software Licensing (.pdf)

Security Policies — B Series

Information Security Framework (.pdf)

Audit Checklist • Tips • White Paper • User Requirements

Boundary Security (.pdf)

Audit Checklist • Tips • White Paper • User Requirements

Password-PIN Security (.pdf)

Audit Checklist • Tips • White Paper • User Requirements

Malicious Code Security (.pdf)

Audit Checklist • Tips • White Paper • User Requirements

Remote Access Security (.pdf)

Audit Checklist • Tips • White Paper • User Requirements

Internet Security (.pdf)

Audit Checklist • Tips • White Paper • User Requirements

Security Incident Response (.pdf)

Audit Checklist • Tips • White Paper • User Requirements

Security Education and Awareness (.pdf)

Audit Checklist • Tips • White Paper • User Requirements

Portable Computing Security (.pdf)

Audit Checklist • Tips • White Paper • User Requirements

Security Notifications (.pdf)

Audit Checklist • Tips • White Paper • User Requirements

Data Classification (.pdf)

Audit Checklist • Tips • User Requirements

Data Classification Resource Kit (.pdf)

Intrusion Prevention and Detection (.pdf)

Audit Checklist • Tips • White Paper • User Requirements

IT Project Lifecycle Policies — D Series

Information Technology Planning (.pdf)

IT Asset Management Policies — E Series

Disposal, Servicing and Transfer of IT Equipment (.pdf)

Audit Checklist

Business Resumption Planning (.pdf)

IT Business Continuity Planning Guideline (replaces ITP-E.7)

Use of Internet, E-mail and Other IT Resources (.pdf)

Audit Checklist

Electronic Records (.pdf)

Audit Checklist

Internet/Intranet Policies — F Series

Registration of Internet Domain Names (.pdf)

Web Site Accessibility (.pdf)

Executive Branch Cabinet Agency Web Site Standardization (.pdf)

Advertisements, Endorsements, and Sponsorship on State-Controlled Web Sites (.pdf)

Telecommunication Policies — H Series

Use of State Telephones (.pdf)

Telecommunications Utility Services (.pdf)

State of Ohio IT Standards

Network Standards — NET Series

802.11 Wireless Local Area Network Technical Architecture (.pdf)

802.11 Wireless Local Area Network Standard (.pdf)

Platform Standards — PLF Series

Enterprise Client Computer Hardware Standard (.pdf)

ITS-PLF-02 RESCINDED Enterprise Notebook Hardware Standard (.pdf)

(see ITS-PLF-01)

Printer Total Cost of Ownership (.pdf)

Printer TCO Tools

Security Standards — SEC Series

Data Encryption and Cryptography (.pdf)

Systems Management Standards — SYS Series

Bar Code Standards for Automated Inventory Systems Used by State of Ohio Government Agencies (.pdf)

OIT Enterprise Procedures

Security Procedures — SEC Series

Statewide Incident Response Reporting

Review of Sensitive Data Bulletin Exception Request (.pdf)

Sensitive Data Bulletin Exception Request Form (.doc)

State of Ohio IT Bulletins

Privacy Impact Assessments (.pdf)

PTA Template (.doc) • PIA Template (.doc)

Encryption and Investigatory Needs (.pdf)

Statement of Responsibility (.doc)

Data Encryption and Securing Sensitive Data (.pdf)

Electronic Communication and Public Records (.pdf)

Public Records Requests Concerning IT and Telecommunications Systems (.pdf)

• Enterprise IT Architecture & Policy Home • IT Policy Management

• IT Standards Management • IT Law & Policy • Rules, Directives, Policies, Standards, Procedures & Bulletins • Enterprise IT Architecture & Policy News • Electronic Signature Rule

• IT Policy FAQs • IT Rule FAQs • Policy Resources • Standards Resources