Enterprise Information Security Office

ITS Security Policies

Start typing a few keywords to begin
Published Last Updatedsort ascending No. Title
03/21/2014 07/14/2017 NYS-S14-007 Encryption Standard
10/18/2013 07/14/2017 NYS-S13-003 Sanitization/Secure Disposal Standard
11/05/2013 05/03/2017 Cyber Incident Reporting Procedure
08/15/2014 03/10/2017 NYS-S14-013 Account Management / Access Control Standard
02/12/2010 03/10/2017 NYS-S10-001 CPE Requirements for ISOs/Designated Security Representatives Standard
10/18/2013 03/10/2017 NYS-P13-001 Information Security Exception Policy
10/18/2013 03/10/2017 NYS-S13-004 Identity Assurance Standard
04/18/2014 03/10/2017 NYS-S14-010 Remote Access Standard
01/16/2015 03/10/2017 NYS-S15-001 Patch Management Standard
11/15/2013 03/10/2017 NYS-S13-005 Cyber Incident Response Standard
01/16/2015 03/10/2017 NYS-S15-002 Vulnerability Scanning Standard
10/10/2008 03/10/2017 NYS-S14-002 Information Classification Standard
01/17/2014 03/10/2017 NYS-S14-001 Information Security Risk Management Standard
10/10/2008 03/10/2017 NYS-S14-003 Information Security Controls Standard
04/18/2003 03/10/2017 NYS-P03-002 Information Security Policy
10/18/2013 03/10/2017 NYS-S13-002 Secure Coding Standard
10/18/2013 03/10/2017 NYS-S13-001 Secure System Development Life Cycle (SSDLC) Standard
01/17/2014 02/22/2017 NYS-P14-001 Acceptable Use of Information Technology (IT) Resources Policy
02/21/2014 02/21/2017 NYS-S14-005 Security Logging Standard
10/05/2010 02/16/2017 NYS-P10-006 Identity Assurance Policy
05/10/2010 02/15/2017 NYS-G10-001 Secure Use of Social Media Guideline
05/15/2015 02/15/2017 NYS-S15-003 802.11 Wireless Network Security
03/21/2014 02/15/2017 NYS-S14-006 Authentication Tokens
04/18/2014 02/15/2017 NYS-S14-009 Mobile Device Security
04/18/2014 02/15/2017 NYS-S14-008 Secure Configuration Standard