Document Category: Policies

ITA Policy P1070 defines GIS as a key part of Idaho’s IT architecture, promoting data compatibility and interoperability among state agencies.

ITA Policy P3020 mandates the use of compatible network protocols for connectivity, ensuring reliable and economical communication across state agencies.

ITA Policy P4502 mandates the use of multifactor authentication for privileged accounts to reduce the risk of compromise to agency information and assets.

ITA Policy P4590 mandates the establishment of an incident response program within state agencies, ensuring timely reporting and management of cybersecurity incidents and breaches.

ITA Policy P1010 ensures statewide integration of information resources, providing seamless access to data, computer services, and communication resources.

ITA Policy P1090 establishes a cloud services security policy to ensure the wise use of state resources while mitigating risks and legal liabilities.

ITA Policy P3030 mandates the use of ITS’s statewide hardware and service contracts for WAN services, ensuring cost-effective and efficient connectivity.

ITA Policy P4503 mandates identity and access management practices to protect state agency assets with best practice authentication standards.

ITA Policy P5010 mandates the use of the State Web Design Template, ensuring a consistent look and navigation experience across all State of Idaho websites.

ITA Policy P1015 outlines the process for developing IT policies, standards, and guidelines, ensuring consistency and effectiveness statewide.

ITA Policy 2010 outlines the Information Technology Planning Process, ensuring strategic alignment and effective resource management.

ITA Policy P3040 ensures that state 911 multi-line telephone systems meet safety standards, providing accurate location information during emergencies.

ITA Policy P4505 mandates cybersecurity awareness training for all state agency personnel, ensuring they understand and mitigate cybersecurity risks.

ITA Policy P5020 establishes a framework for a single, integrated enterprise domain for all Idaho government entities, ensuring official state website identification.

ITA Policy P1020 outlines the privacy notice, ensuring protection of user data and privacy across the state’s web portal.

ITA Policy P2020 establishes a statewide business recovery planning policy, ensuring agencies can continue mission-critical IT services during disruptions.

ITA Policy P4110 mandates the designation of an Agency Cybersecurity Coordinator to oversee and implement cybersecurity measures within state agencies.

ITA Policy P4520 establishes guidelines for managing IT vulnerabilities, ensuring timely deployment of patches to prevent exploitation.

ITA Policy P5030 sets the process for developing framework standards, ensuring consistency and compliance across Idaho’s spatial data infrastructure.

ITA Policy P1030 outlines the management of electronic documents, ensuring compliance with state records management policies and statutes.

ITA Policy P2030 mandates the review of large-scale IT projects by state agencies to ensure alignment with statewide IT plans and standards.

ITA Policy P4130 establishes information systems classification categories for state agencies, promoting effective management and security of information.

ITA Policy P4530 defines requirements for data removal from surplus computer equipment, ensuring sensitive information is unrecoverable.

ITA Policy P5040 provides guidelines for the use of social networking sites by state agencies, ensuring secure, consistent, and effective communication.

ITA Policy P1040 ensures proper and efficient use of Idaho’s email and messaging systems by employees, promoting ethical and lawful communication.

ITA Policy P2040 mandates risk assessments for large-scale IT projects, ensuring agencies minimize potential failures and maintain project success.

ITA Policy P4140 mandates the adoption of the NIST Cybersecurity Framework by state agencies to enhance cybersecurity posture and risk management.

ITA Policy P4540 defines security requirements for state agency wireless networks, ensuring secure communications and restricted access.

ITA Policy P1050 ensures responsible and secure internet use, monitoring, and filtering to protect state resources and enhance productivity.

ITA Policy P2045 requires state agencies to adopt a risk management program to manage risks to the confidentiality, integrity, and availability of data.

ITA Policy P4150 mandates the protection of Personally Identifiable Information (PII) by state agencies, ensuring data privacy and security.

ITA Policy P4550 ensures mobile device use does not compromise state information security, defining minimum security requirements for all devices.

ITA Policy P1060 outlines the expectations for the use of state-issued IT devices, ensuring proper management and security.

ITA Policy P3010 mandates the use of ITS’s central statewide system for telecommunications, ensuring cost-effective and efficient services.

ITA Policy P4501 mandates the principles of least privilege and least functionality, minimizing vulnerabilities to information and assets.

ITA Policy P4570 defines security requirements for state agency firewalls, ensuring secure network communications and restricted access.