Select a Topic

- Any -

3rd Party Hosted Solutions

access

accessibility

accreditation

agency reports

AI

AI tools

alarms

annual training

appropriate use

artificial intelligence

assessment

Assessments

assurance

Audit

Audits

authentication

authority

authorization

authorization to operate

authorizing official

availability

awareness

backup media

boundary

building security

business continuity

business owner

BYOD

categorization

certification

change

charter

Cloud

cloud

confidentiality

constituent data

continuity

contract

contractor

cryptography

Cybersecurity Capability Maturity Model

data center

data classification

data lifecycle

data owner

data sharing

data steward

data storage location

decommission

defense-in-depth

deployment

development lifecycle

disaster recovery

disposal

document management

electronic record

email

employee

enterprise application

enterprise operational environment (EOE)

EOE

escalation

facilities

financial

framework

frequency

Generative AI

go-live

governance charter

GTA review

IaaS

incident

Information Security

integration

integrator

integrity

interconnection security agreement

investment

ISA

ITIL

IV&V

legal hold

license

lifecycle

log

logical access

malicious software

media

memorandum of agreement

middleware

mobility

MOU

NADC

network security

new systems

NIST

non-disclosure

non-state IT

operations

outsourced

PaaS

password

performance lifecycle

personal information

physical access

physical security

Policy for the cost effective implementation and management of agency projects that involve a substantial information technology system (“IT”) component.

privacy

procurement

production acceptance

production facility

project assurance

project integrator

project management

project request

PSG exemption

public access

public record

purge

radio

records management

refresh

remote access

reporting

request for exemption

Responsibility for Risk

retention schedule

risk

SaaS

sanitized

screening

sdlc

SEAC

Section 508

security

Security and Compliance

security awareness

Security Controls

security framework

security level

security organization

security plan

security policy

security requirements

security review

security training

service agreement

Share-Services

Shared-Services

SOC

social media

Software Licensing and Management

Software Licensing and Management (SM-19-001)

spectrum

state business

state data center

State Enterprise Application Council

Statewide Policy

steward

strategic plan

surplus

technology resources

technology review

telecommunications

telework

Terms and Conditions

test facility

third-party

training

trusted partner

unescorted

upgrade

Use Case

validation

vendor return

verification

voicemail

W3C

WCAG

web applications

web methods

website

website design

Browse by Topic

Data Security - Electronic Records (SS-08-003)

Electronic records are 1)relied upon as official records and 2) must adhere to records retention requirements and 3) must be protected from unauthorized …

Data Sharing Guidelines (GM-15-008)

Provides guidance for using the enterprise service bus

Data Steward (SM-15-001)

Data Stewardship Requirement for Constituent Data

Deployed Software Currency (SA-10-010)

Requires and defines software currency

Deployment Certification (SA-10-009)

Requires a Deployment Certification

Design Criteria for Electronic Records Management Applications (SA-06-006)

Records management application criteria

Digital Accessibility Standard (SM-19-002)

All digital properties managed by state entities must be accessible by WCAG 2.1 (Level AA) Compliance standards.

Disaster Recovery - System Backup (SS-08-046)

Requires backup and recovery procedures for critical software and data

Electronic Communications Accountability (SS-08-009)

Fixes accountability for content and transfer of information through electronic communications

Email Administration - Distribution Lists (SA-07-010)

Standards for large inter-agency and all multi-agency distribution lists

Select a Topic

- Any -

3rd Party Hosted Solutions

access

accessibility

accreditation

agency reports

AI

AI tools

alarms

annual training

appropriate use

artificial intelligence

assessment

Assessments

assurance

Audit

Audits

authentication

authority

authorization

authorization to operate

authorizing official

availability

awareness

backup media

boundary

building security

business continuity

business owner

BYOD

categorization

certification

change

charter

Cloud

cloud

confidentiality

constituent data

continuity

contract

contractor

cryptography

Cybersecurity Capability Maturity Model

data center

data classification

data lifecycle

data owner

data sharing

data steward

data storage location

decommission

defense-in-depth

deployment

development lifecycle

disaster recovery

disposal

document management

electronic record

email

employee

enterprise application

enterprise operational environment (EOE)

EOE

escalation

facilities

financial

framework

frequency

Generative AI

go-live

governance charter

GTA review

IaaS

incident

Information Security

integration

integrator

integrity

interconnection security agreement

investment

ISA

ITIL

IV&V

legal hold

license

lifecycle

log

logical access

malicious software

media

memorandum of agreement

middleware

mobility

MOU

NADC

network security

new systems

NIST

non-disclosure

non-state IT

operations

outsourced

PaaS

password

performance lifecycle

personal information

physical access

physical security

Policy for the cost effective implementation and management of agency projects that involve a substantial information technology system (“IT”) component.

privacy

procurement

production acceptance

production facility

project assurance

project integrator

project management

project request

PSG exemption

public access

public record

purge

radio

records management

refresh

remote access

reporting

request for exemption

Responsibility for Risk

retention schedule

risk

SaaS

sanitized

screening

sdlc

SEAC

Section 508

security

Security and Compliance

security awareness

Security Controls

security framework

security level

security organization

security plan

security policy

security requirements

security review

security training

service agreement

Share-Services

Shared-Services

SOC

social media

Software Licensing and Management

Software Licensing and Management (SM-19-001)

spectrum

state business

state data center

State Enterprise Application Council

Statewide Policy

steward

strategic plan

surplus

technology resources

technology review

telecommunications

telework

Terms and Conditions

test facility

third-party

training

trusted partner

unescorted

upgrade

Use Case

validation

vendor return

verification

voicemail

W3C

WCAG

web applications

web methods

website

website design