Cyber Threat Level
Right Column
Go RIM for Policy Section 5335 - Communications and Operations Management
The following provides a central location for information security standards, authority, guidance, forms, tools, definitions, and reference to other policies related to communications and operations management.
- Information Security Policy (State Administrative Manual)
- Authority
- Standards
- Guidance
- Forms
- Tools
- Definitions
- Related Policies
- Go RIM Home
Standards
- ISO/IEC 27002:2005 (formerly ISO 17799), Section 10 - Communications and Operations Management
- Federal Information Processing Standards (FIPS)
- HIPAA Security Standards, Sections 164.308(a)(2), 164.308(a)(3), 164.308(a)(4), 164.308(a)(5), 164.308(a)(6), 164.308(a)(7), 164.308(b)(1), 164.310(a)(1), 164.310(b), 164.310(c), 164.310(d)(1), 164.312(a)(1), 164.312(b), 164.312(c)(1), 164.312(d), and 164.312(e)(1).
- North America Electric Reliability Corporation (NERC) Standards CIP, 003- Security Management Controls, 005-Electronic Security Perimeters, 006 - Physical Security of Critical Cyber Assets, 007-Systems Security Management, and 009 - Recovery Plans for Critical Cyber Assets.
- PCI-DSS, All Requirements (1 through 12)
Guidance
- Insider Threat - Information Sheet No. 5, The Hostile Takeover (.pdf, 83k)
- NIST Security Configuration Checklists: SP 800-68, SP 800-69, and SP 800-70
- Guide to Malware Incident Prevention and Handling, NIST SP-83
- Guide to Computer Security Log Management, NIST SP 800-92
- Log Management: Using Computer and Network Records to Improve Information Security, NIST ITL Bulletin - October 2006
- Guide to Intrusion Detection and Prevention Systems (IDPS), NIST SP 800-94
- Guidelines for Media Sanitization, NIST SP 800-88
- Secure Domain Name System (DNS) Deployment Guide, NIST SP 800-81
- Guide to IPsec VPNs, NIST SP 800-77
- Guide to Secure Web Services, NIST SP 800-95
- Secure Web Servers Protecting Web Sites That Are Accessed By The Public, NIST ITL Bulletin - January 2008
- Securing External Computers And Other Devices Used by Teleworkers - NIST ITL Bulletin - December 2007
- Using Storage Encryption Technologies to Protect End User Devices - NIST ITL Bulletin - November 2007
- Security Configuration Guides (NSA)
- The 60 Minute Network Security Guide: First Steps Towards a Secure Network Environment
- Secure Software - Information Sheet No. 4, Web Service Offerings (.pdf, 85k)
Last Updated: Friday, July 25, 2008
