Six new state IT policies issued |
Issue Date: December 26, 2002 |
Source: IGD, Statewide IT Policy |
| To provide a foundation for the security of information and
services held in the public trust by state |
government,
the Department of Administrative Services recently issued the
following state information |
| technology (IT) security policies, pursuant to §125.021 of the Ohio Revised Code: |
|
which current and future IT security policies shall be developed, governed and |
administrated. |
|
deploying a robust network perimeter defense capability. |
|
requirements for the selection, use and management of passwords and personal |
identification numbers. |
|
operation of a malicious code security program targeted to ensure adequate protective |
measures and processes are deployed against the introduction of malicious code. |
|
operation of security measures governing remote access to state systems. |
|
to the Internet. |
| The state IT policies, which became effective Dec. 5, may be
obtained online at |
| http://oit.ohio.gov/IGD/policy/OhioITPolicies.aspx. Each policy was subject to a rigorous research, |
| development and quality control process. The process involved State of Ohio agency chief information |
| officers, industry security experts,research resources, policy analysts, legal counsel and a collaborative |
inter-agency workgroup representing 25 state agencies. |
Ohio IT Policy applies to all state agencies except the military department, the general assembly, the |
bureau of workers' compensation and institutions administered by boards of trustees. |
Comments, questions or inquiries may be directed to: |
| Ohio Department of Administrative Services |
| Computer Services Division |
| 30 E. Broad St., 39th Floor |
| Columbus, Ohio 43215-3414 |
| Telephone: (614) 644-9352 |
| Facsimile: (614) 644-9152 |