Media: Policy

Information Technology: Contingency Planning

June 5, 2024 - This policy and procedure is intended to meet the control requirements outlined in SEC530 , Section 8.6 Contingency Planning Family, Controls CP-1 through CP11, to include specific requirements for the Commonwealth of Virginia.

Information Technology: Configuration Management

June 5, 2024 - This policy and procedure is intended to meet the control requirement outlined in SEC530 , Section 8.5 Configuration Management Family, Controls CM-1 through CM14, as well as additional controls for the Commonwealth of Virginia.

Information Security: Assessment, Authorization and Monitoring

June 5, 2024 - This policy and procedure is intended to meet the control requirement outlined in SEC502 and SEC 530, Section 8.4 Security Assessment and Authorization Family, Controls CA-1 through CA-9, to include specific requirements for the Commonwealth of Virginia.

Information Security: Audit and Accountability

May 14, 2024 - This policy and procedure is intended to meet the control requirement outlined in SEC502 and SEC 530, Section 8.3Audit and Accountability Family, Controls AU-1 through AU-13.