Department of Corrections and Rehabilitation - Operations Manual

Cancel

Chapter 4 – Information Technology

Article 56 – Firewall Configuration Policy

March 14, 2022

View All Sections >

References

  • SAMState Administrative Manual, Section 5305.5, Information Asset Management
    SAMState Administrative Manual, Section 5310.4, Individual Access to Personal Information  
    SAMState Administrative Manual, Section 5310.6, Data Retention and Destruction 
    SAMState Administrative Manual, Section 5310.7, Security Safeguards 
    SAMState Administrative Manual, Section 5340, Information Security Incident Management 
    SAMState Administrative Manual, Section 5340.1, Incident Response Training 
    SAMState Administrative Manual, Section 5340.2, Incident Response Testing 
    SAMState Administrative Manual, Section 5340.3, Incident Handling 
    SAMState Administrative Manual, Section 5340.4, Incident Reporting 
    SAMState Administrative Manual, Section 5350.1, Encryption 
    SAMState Administrative Manual, Section 5365, Physical Security 
    SAMState Administrative Manual, Section 5365.1, Access Control for Output Devices 
    SAMState Administrative Manual, Section 5365.2, Media Protection 
    SAMState Administrative Manual, Section 5365.3, Media Disposal 
    Federal Information Processing Standard, FIPS 199 
    NIST SP 800-53, Access Control, AC-3 Access Enforcement, AC-4 Information Flow Enforcement  
    NIST SP 800-53, Audit and Accountability, AU-2 Event Logging, AU-3 Content of Audit Records, AU-13 Monitoring for Information Disclosure 
    NIST SP 800-53, Configuration Management, CM-8 System Component Inventory 
    NIST SP 800-53, Media Protection, MP-1, MP-2, MP-3, MP-4, MP-5, MP-6, MP-7 
    NIST SP 800-53, Physical and Environmental Protection, PE-5 Access Control for Output Devices, PE-19 Information Leakage, PE-20 Asset Monitoring and Tracking 
    NIST SP 800-53, Planning, PL-4 Rules of Behavior 
    NIST SP 800-53, Program Management, PM-9 Risk Management Strategy 
    NIST SP 800-53, Risk Assessment, RA-2 Security Categorization, RA-3 Risk Assessment 
    NIST SP 800-53, Assessment, Authorization and Monitoring, CACorrectional Administrators-7 Continuous Monitoring 
    NIST SP 800-53, System and Communications Protection, SC-4 Information in Shared Resources, SC-8 Transmission Confidentiality and Integrity, SC-13 Cryptographic Protection, SC-17 Public Key Infrastructure Certificates, SC-28 Protection of Information at Rest 
    DOMDepartment Operations Manual Chapter 3, Article 22 
    DOMDepartment Operations Manual Chapter 4, Article 45, Sections 49020.8, 49020.9 and 49020.10 
    California Government Code Section 11549.3