Professional Documents
Culture Documents
Standard Statement
To ensure the State of Minnesota is adequately managing information security across the enterprise, a
comprehensive information security program under the leadership of the State Chief Information Security
Officer (CISO) must be developed and maintained. Through this program the State CISO is authorized to set
information security policies and standards, identify, track and report on security risks to State systems and
data, and monitor for and address security related incidents.
High
High
Applicability
This standard applies to all departments, agencies, offices, councils, boards, commissions, and other entities in
the executive branch of Minnesota State Government.
Related Information
Information Security and Risk Management Program Policy
Contact
GRC@state.mn.us