Department of Corrections and Rehabilitation - Operations Manual

Cancel

Chapter 4 – Information Technology

Article 53 – Server Configuration Policy

XXXX XX, XXXX

View All Sections >

49100.11 Revisions

  • The CIO or Designee shall ensure that the contents of this article are current and accurate.

  • References

  • SIMM, section 5300-B, Foundational Framework

  • SIMM, section 5305-A, Information Security Program Management Standard

  • SAMState Administrative Manual, section 5305.5, Information Asset Management

  • SAMState Administrative Manual, section 5310.4, Individual Access to Personal Information

  • SAMState Administrative Manual, section 5310.6, Data Retention and Destruction

  • SAMState Administrative Manual, section 5310.7, Security Safeguards

  • SAMState Administrative Manual, section 5340, Information Security Incident Management

  • SAMState Administrative Manual, section 5340.1, Incident Response Training

  • SAMState Administrative Manual, section 5340.2, Incident Response Testing

  • SAMState Administrative Manual, section 5340.3, Incident Handling

  • SAMState Administrative Manual, section 5340.4, Incident Reporting

  • SAMState Administrative Manual, section 5350.1, Encryption

  • SAMState Administrative Manual, section 5365, Physical Security

  • SAMState Administrative Manual, section 5365.1, Access Control for Output Devices

  • SAMState Administrative Manual, section 5365.2, Media Protection

  • SAMState Administrative Manual, section 5365.3, Media Disposal

  • Federal Information Processing Standards, FIPS 199

  • Federal Information Processing Standards, FIPS 140-2

  • NIST SP 800-53, Access Control, AC-3, AC-4

  • NIST SP 800-53, Audit and Accountability, AU-2, AU-3, AU-13

  • NIST SP 800-53, Configuration Management, CM-8

  • NIST SP 800-53, Identification and Authentication, IA-5(1)

  • NIST SP 800-53, Media Protection, MP-1, MP-2, MP-3, MP-4, MP-5, MP-6, MP-7

  • NIST SP 800-53, Physical and Environmental Protection, PE-5, PE-19, PE-20

  • NIST SP 800-53, Planning, PL-4

  • NIST SP 800-53, Program Management, PM-9

  • NIST SP 800-53, Risk Assessment, RA-2, RA-3

  • NIST SP 800-53, Security and Communications Protection, SC-4, SC-8, SC-13, SC-17, SC-28

  • NIST SP 800-63B, Digital Identity Guidelines, Authentication and Lifecycle Management

  • DOMDepartment Operations Manual, Chapter 3, Article 22

  • DOMDepartment Operations Manual, Chapter 4, Article 41, section 48010.5

  • California Government Code section 11549.3

  • Revision History

  • Effective: XX.XX.XXXX