Information Security Policies - Colorado Governor's Office of Information Technology

Search this site

Home
About
Our Leadership
Who We Serve
History
Playbook
Performance plan
Mission & Values
Policies & Standards
IT Roadmaps
Common OIT Acronyms
Services
Customer Office
Customer Order Forms
Financial Services
Google Apps for Government
Procurement & Vendor Services
Service Catalog
Salesforce
Service Desk
Technology Office
Programs
Broadband
Colorado Benefits Management System
Colorado Digital Service
Colorado Information Marketplace
Cybersecurity
Enterprise Architecture & Data Management
Geographic Information Systems (GIS)
IT Transformation Program
myColorado & Colorado Digital ID
Public Safety Communications Network
What's New
Press Releases
In the News
Awards
Publications
Newsletters
Careers
Technology Jobs
Intern & Apprenticeships
Top Areas of Interest
Why Work @ OIT?
Where Do You Fit?
Submit a Ticket

Chief Information Security Office‎ > ‎

Information Security Policies

Office of Information Security

Security Resources

Security Policies & Standards

Incident Reporting

Cybersecurity Help

For State Employees

Security concern or incident to report?

We are here to help with network security vulnerabilities and threats in Colorado:

ISOC@state.co.us 303.764.7760

Information Security Policies & Standards

The Office of Information Security has issued the following rules and policies under the authority of Colorado Revised Statutes 24-37.5-401 et seq.

Rules

CCR 1501-5: Rules in support of the Colorado Information Security Act >>

(State Agency Cyber Security Planning)

Colorado Information Security Policies (CISPs)

These policies were reviewed and updated October 2019 and supersede any policies posted prior to this date.

Glossary of Terms for the below Colorado Information Security Policies (CISPs)»

CISP-001: Access Control
CISP-002: Security Awareness and Training
CISP-003: Audit and Accountability
CISP-004: Security Assessment and Authorization
CISP-005: Configuration Management
CISP-006: Contingency Planning
CISP-007: Identification and Authentication
CISP-008: Incident Response
CISP-009: System Maintenance
CISP-010: Media Protection
CISP-011: Physical and Environmental Protection
CISP-012: Personnel Security
CISP-013: Risk Assessment
CISP-014: System and Services Acquisition
CISP-015: System and Communications Protection
CISP-016: System and Information Integrity
CISP-017: Security Planning
CISP-018: Acceptable Use Policy (AUP)

Colorado Security Standards

These State of Colorado technology standards support the state's information security policies.

Forms

OIT Secure Configuration Exception Request Form

CONTACT

Customer FAQs
Directory
Feedback
Site Map
Purchasing/Vendors
OIT Jobs

OFFICES

Broadband Office
Communications Office
Customer Office
Financial Office
Office of Information Security
Technology Office

https://www.facebook.com/ColoradoOIT

https://twitter.com/OITColorado

https://www.linkedin.com/company/state-of-colorado-governor's-office-of-information-technology

https://www.youtube.com/channel/UCRcqJnJNyLoJt--RZvrtM_Q?view_as=subscriber

http://stateofcoit.blogspot.com/

Governor's Office of Information Technology | 601 E. 18th Ave., Suite 250, Denver, CO 80203 | 303.764.7700 | oit@state.co.us

© 2020 State of Colorado | Colorado.gov | Accessibility Questions or Concerns | Transparency Online Project | Privacy Statement | Site Map

Sign in Report AbusePowered By Google Sites