All files are posted in pdf format unless otherwise indicated.

Index
Number Description Date Published Last Reviewed
15-06-NJOIT

Internet Access Policy for New Jersey State Agencies

04/08/201504/08/215
15-05-NJOIT

State Telecommunication Coordinators

05/27/201505/27/2015
15-04-NJOIT

164 - Backup and Restore Policy

01/22/201501/22/2015
15-03-NJOIT

165 - Firewall Management Policy

01/22/201501/22/2015
15-02-NJOIT

176 - Information Security System Monitoring and User Review Policy

01/22/201501/22/2015
15-01-NJOIT

142 - Workforce Security Policy

01/22/201501/22/2015
14-33-NJOIT

131 - Confidential and/or Personally Identifiable Information

10/28/201410/28/2014
14-32-NJOIT

177 - Password Management Policy

10/14/201410/14/2014

177-01 - Password Management Standard

10/14/201410/14/2014
14-31-NJOIT

195 - Contingency Planning Policy

10/28/201410/28/2014
14-30-NJOIT

1600 - Acceptable Internet Usage

09/05/201409/5/2014
14-29-NJOIT

172 - Access Control Management Policy

11/13/201411/13/2014
14-28-NJOIT

202 -Asset Audit and Accountability Policy

11/13/201411/13/2014
14-27-2014

1701 - Identification and Authentication Policy

10/27/201410/27/2014
14-26-NJOIT

181 - Encryption and Digital Signatures Policy

10/27/201410/27/2014
14-25-NJOIT

182 - System and Services Acquisition Policy

10/27/201410/27/2014
14-18-NJOIT

174 - Network Security Policy

06/12/201406/12/2014
14-17-NJOIT

166 - Electronic Mail/Messaging Content Policy and Standards

04/02/201404/08/2015
14-14-NJOIT

116 - Security Assessment Policy

07/28/201407/28/2014
14-13-NJOIT

205 - Certification and Accreditation Policy

03/10/201403/10/2014

Information Security's Certification and Accreditation Checklist

03/10/201401/08/2015
14-12-NJOIT

183 - Software License Management and Distribution

04/03/201404/3/2014
14-11-NJOIT

Internet and Statewide Intranet Presence for New Jersey State Government

01/23/201401/23/2014
14-09-NJOIT

168 - Change Management Policy

01/07/201401/7/2014
14-08-NJOIT

180 - Security in Application Development Policy

01/07/201401/7/2014
14-07-NJOIT

1602 -Media Protection Policy

01/07/201401/7/2014
14-06-NJOIT

162 - System Planning and Acceptance Policy

01/07/201401/7/2014
14-05-NJOIT

161 -Operational Security Policy

01/07/201401/7/2014
14-04-NJOIT

1703 - State of New Jersey Disclaimer Policy

07/28/201407/28/2014

1703-01 - State of New Jersey Disclaimer Standard

07/28/201405/27/2015
14-03-NJOIT

173 -Wireless Network Security Policy

01/07/201401/7/2014
  • 14-03-S1-NJOIT
    This standard is published/posted in NJ-ISAC.

173-01 -Wireless Network Security Standard and Procedure

01/07/201401/7/2014
14-02-NJOIT

115 - Information Security Risk Management Policy

01/07/201401/7/2014

Risk Management Remediation Report Template

01/10/201401/10/2014
14-01-NJOIT

171 - Minimum System Security and Protection Policy

01/23/201401/23/2014
14-01-S1-NJOIT
This standard is published/posted in NJ-ISAC.

171-01 -Minimum System Security and Protection Standards

01/07/201401/07/2014
13-09-NJOIT

131 - State of New Jersey On-line Privacy Policy

12/19/201312/19/2013
12-04-NJOIT

201 - Information Security Vulnerability Management Policy

05/03/201212/11/2014

201-01 - Information Security Vulnerability Management Standard And Procedure

09/10/201212/11/2014
12-03-NJOIT

110 - Security Framework Policy

07/17/201207/17/2012
12-02-NJOIT

132 - Portable Computing Use and Temporary Worksite Assignment Policy

06/20/201307/17/2012

Portable Computing User Agreement

09/06/201304/19/2013

Cellular Wireless Device and Portable Computing Device Request

12/04/201312/3/2013

State-Owned Property Removal Form

04/30/201203/20/2012
12-01-NJOIT

141 - Security Awareness Program Policy

03/21/201203/21/2012
11-05-NJOIT

Review and Approval of Agency RFPs

10/07/201110/7/2011
11-02-NJOIT

190-NJOIT - Information Security Incident Management Policy

05/24/201205/24/2012

190-00-01 - Information Security Incident Management Reporting Procedures

05/24/201207/25/2013

Attachment A to 11-02-P1-NJOIT

07/26/201307/26/2013

Information Security Incident Reporting Form

07/26/201307/24/2013

191 - Information Security Incident Management Response Procedure

05/24/201207/25/2013
11-01-NJOIT

179 - Remote Access Policy

03/09/201203/9/2012
  • 11-01-P1-NJOIT

179-01-P1-NJOIT - Remote Access Procedure
To obtain a copy contact Statewide Office of Information Security

07/20/201107/20/2011

179-01 - Remote Access Standard

07/20/201107/20/2011
09-11-NJOIT

169 - Business Entity, IT Services and/or Extranet

07/06/200901/22/2015

169-00-01 - Business Entity, IT Services and/or Extranet

08/07/200901/22/2015

Business Entity and/or IT Services Extranet Application Form [pdf 48k]

10/2/201201/28/2015

Business Entity and/or IT Services Extranet MOU [dot 67k]

10/02/201201/28/2015

Business Entity IT Services and/or Extranet Connection Detail [dot 99k]

10/01/201201/28/2015

Business Entity, IT Services and/or Extranet Security Controls Assessment Checklist [pdf 206k]

01/22/201501/22/2015
09-10-NJOIT

152 - Information Disposal and Media Sanitization Policy

04/08/201101/22/2015

152-01 - Information Disposal and Media Sanitization Standards

04/08/201101/22/2015

152-00-01 - Information Disposal and Media Sanitization Procedure

04/08/201101/22/2015

Media Disposal Forms [pdf 301 kb]

04/201104/1/2011
09-05-NJOIT

203 - Information Security Payment Card Industry (PCI) Data Security Policy

10/02/200812/15/2011

203-01 - Information Security Payment Card Industry (PCI) Data Security Standard

10/02/200812/15/2011
08-04-NJOIT

130 - Information Asset Classification Control Policy

07/31/200811/15/2011

130-01 - Information Asset Classification and Control Standard

06/15/201206/15/2012

130-00-01 - Information Assets Classification and Control Procedure

07/31/200812/15/2011

130-00-01  - Attachment A (Inventory Spreadsheet) [xls 30k]

07/31/200810/3/2013
08-02-NJOIT

111 - Information Security Managing Exceptions

06/02/200811/15/2011

Policy Exception Request Form

02/12/201401/29/2014
08-01-NJOIT

100 - Information Security Program

06/18/200812/15/2011
07-14-NJOIT

Standard and Policy for Year 2000 Compliance

03/13/200703/13/2007
07-12-NJOIT

Web Accessibility Policy

06/13/200710/27/2014
07-10-NJOIT

Use of Statewide Disaster Recovery Facilities

06/11/200706/11/2014

J2EE Application Deployment Policy and Procedures
To obtain a copy contact Infrastructure Support Services

07/200705/2015
06-06-NJOIT

State of New Jersey Online Disclaimer Policy

08/10/200108/10/2001

NJ Shared IT Architecture

09/201101/1/2014

Web Site Standards and Guidelines

11/201211/2012