Chapter 4 – Information Technology

References

• SIMM 5305-A, Information Security Program Management Standard

• SIMM 5355-A, Endpoint Protection Standard

• SAMState Administrative Manual, section 5355, Endpoint Defense

• SAMState Administrative Manual, section 5355.1, Malicious Code Protection

• NIST SP 800-53, Security Assessment and Authorization, CACorrectional Administrators-7

• NIST SP 800-53, Configuration Management, CM-2, CM-3, CM-6, CM-7, CM-10, CM-11

• NIST SP 800-53, System and Communications Protection, SC-8, SC-10, SC-11, SC-13, SC-18, SC-23, SC-24, SC-28, SC-38, SC-42, SC-43

• NIST SP 800-53, System and Information Integrity, SI-2, SI-3, SI-4, SI-5, SI-7, SI-8, SI11

• NIST SP 800-53, Program Management, PM-9

• NIST SP 800-53, Risk Assessment, RA-2, RA-3, RA-5

• NIST SP 800-53, Physical and Environmental Protection, PE-3, PE-19, PE-20

• DOMDepartment Operations Manual, Chapter 3, Article 22

• DOMDepartment Operations Manual, Chapter 4, Article 41, section 48010.5

• California Government Code, section 11549.3