All files are posted in pdf format unless otherwise indicated.

Index
Number Description Date Posted Page
14-18-NJOIT 174 - Network Security Policy 06/12/2014 Information Security
14-17-NJOIT 166 - Electronic Mail/Messaging Content Policy and Standards 04/03/2014 Information Security
14-14-NJOIT 116 - Security Assessment Policy 07/28/2014 Information Security
14-13-NJOIT 205 - Certification and Accreditation Policy 03/10/2014 Information Security
14-12-NJOIT 183 - Software License Management and Distribution 04/03/2014 Information Security
14-11-NJOIT Internet and Statewide Intranet Presence for New Jersey State Government 01/23/2014 Web
14-09-NJOIT 168 - Change Management Policy 01/07/2014 Information Security
14-08-NJOIT 180 - Security in Application Development Policy 01/07/2014 Information Security
14-07-NJOIT 1602 -Media Protection Policy 01/07/2014 Information Security
14-06-NJOIT 162 - System Planning and Acceptance Policy 01/07/2014 Information Security
14-05-NJOIT 161 -Operational Security Policy 01/07/2014 Information Security
14-04-NJOIT 1703 - State of New Jersey Disclaimer Policy 07/28/2014 Information Security
14-04-S1-NJOIT 1703-01 - State of New Jersey Disclaimer Standard 07/28/2014 Information Security
14-03-NJOIT 173 -Wireless Network Security Policy 01/07/2014 Information Security
  • 14-03-S1-NJOIT
    This standard is published/posted in NJ-ISAC.
173-01 -Wireless Network Security Standard and Procedure 01/07/2014 Information Security
01/07/2014 Information Security

14-02-NJOIT

115 - Information Security Risk Management Policy

01/07/2014 Information Security

Risk Management Remediation Report Template

01/10/2014 Information Security

14-01-NJOIT

171 - Minimum System Security and Protection Policy 01/23/2014 Information Security

14-01-S1-NJOIT
This standard is published/posted in NJ-ISAC.

171-01 -Minimum System Security and Protection Standards

01/07/2014 Information Security
13-11-NJOIT 177- Password Management Policy 07/09/2013 Information Security
177-01 - Password Management Standard 07/09/2013 Information Security
13-09-NJOIT 131 State of New Jersey On-line Privacy Policy 12/20/2013 Web
12-04-NJOIT 184-Information Security Vulnerability Management Policy 05/03/2012 Information Security
184-01  Information Security Vulnerability Management Standard And Procedure 09/10/2012 Information Security
12-03-NJOIT 110 - Security Framework Policy 07/17/2012 Information Security
12-02-NJOIT 132 - Portable Computing Use and Temporary Worksite Assignment Policy 06/20/2013 Information Security
Portable Computing User Agreement 09/06/2013 Information Security

Cellular Wireless Device and Portable Computing Device Request

12/04/2013 Telecom - munications
State-Owned Property Removal Form 04/30/2012 Information Security
12-01-NJOIT 141 - Security Awareness Program Policy 03/21/2012 Information Security
11-05-NJOIT Review and Approval of Agency RFPs 10/07/2011 Governance
11-02-NJOIT 190-NJOIT - Information Security Incident Management Policy 05/24/2012 Information Security
190-00-01 Information Security Incident Management Reporting Procedures 07/26/2013 Information Security

Attachment A to 11-02-P1-NJOIT

07/26/2013 Information Security

Information Security Incident Reporting Form

07/26/2013 Information Security
191- Information Security Incident Management Response Procedure 07/26/2013 Information Security
11-01-NJOIT 179 - Remote Access Policy 03/09/2012 Information Security
  • 11-01-P1-NJOIT
179-01-P1-NJOIT Remote Access Procedure
To obtain a copy contact Statewide Office of Information Security
07/20/2011 Information Security
179-01 - Remote Access Standard 07/20/2011 Information Security
09-11-NJOIT Extranet Policy

08/10/2009

Information Security
Extranet Procedure

07/20/2012

Information Security
Extranet Procedure Appendix A - GSN Extranet Application Form [doc 54k]

10/02/2012

Information Security
Extranet Procedure Appendix B - GSN Extranet MOU [doc 62k]

10/02/2012

Information Security
Extranet Procedure Appendix C - GSN Extranet Operational Form [doc 62k]

10/02/2012

Information Security
09-10-NJOIT 152 - Information Disposal and Media Sanitization 04/08/2011 Information Security
152-01 - Information Disposal and Media Sanitization Standards 04/08/2011 Information Security
152-00-01 - Information Disposal and Media Sanitization Procedure 04/08/2011 Information Security
Media Disposal Forms [doc 4.5mb] 04/2011 Information Security
09-07-NJOIT 1600 - Acceptable Internet Usage 01/30/09 Information Security
09-05-NJOIT 203 Information Security Payment Card Industry (PCI) Data Security Policy 10/02/2008 Information Security
203-01 Information Security Payment Card Industry (PCI) Data Security Standard 10/02/2008 Information Security

09-04-NJOIT

Personal Naming Standards for E-Mail Addresses 10/02/2008 Enterprise Architecture
08-04-NJOIT 130 Information Asset Classification Control Policy 07/31/2008 Information Security
130-01 Information Asset Classification and Control Standard 06/15/2012 Information Security
130-00-01 - Information Assets Classification and Control Procedure 07/31/2008 Information Security
130-00-01 Attachment A (Inventory Spreadsheet) [xls 30k] 07/31/2008 Information Security
08-02-NJOIT 111 Information Security Managing Exceptions 06/02/2008 Information Security
Policy Exception Request Form 02/12/2014 Information Security
08-01-NJOIT 100 Information Security Program 06/18/2008 Information Security
07-14-NJOIT Standard and Policy for Year 2000 Compliance 03/13/2007 Enterprise Architecture
07-12-NJOIT Web Accessibility Policy 06/13/2007 Web
07-10-NJOIT Use of Statewide Disaster Recovery Facilities 06/11/2014 Enterprise Architecture
  J2EE Application Deployment Policy and Procedures 07/2007 Enterprise Architecture
06-06-NJOIT State of New Jersey Online Disclaimer Policy 11/20/2006 Web
06-04-NJOIT Internet Proxy and Cache Policy 11/20/2006 Web
06-03-NJOIT Internet Access Policy for State Agencies 11/20/2006 Governance
  NJ Shared IT Architecture 09/2011 Enterprise Architecture
  Web Site Standards and Guidelines 11/2012 Web

 

OIT Related Treasury Circulars
Number Description Date Posted Page
14-15-DPMC/OIT Minimum Communications Wiring Requirements for State-Owned and State Leased Space 6/30/2014

Telecom - munications

14-12-DORES/OIT Enterprise Electronic Mail Retention And Disposition Framework 4/4/2014

Information Security

14-07-DPP/OMB/OIT Professional Services: Review Control Monitoring and Extensions 4/28/2011

Project Management

13-05-OIT Assignment and Use of State Owned Cellular Wireless Devices 09/18/2012

Telecom - munications

13-04-OMB/OIT Telephone Billing 09/12/2012

Telecom - munications

12-13-OMB/OIT Moratorium on Procurements of Information Technology (IT) Hardware, Software and Related Services 06/13/2012

Project Management

11-16-DPP/OIT Procurement of Information Technology (IT) Hardware, Software and related Services 04/12/2011

Project Management