An updated version of the Information Technology Security Policy (ITSP) was published in June. In the past, the ITSP was published annually. Information security policy needs to be a living document so that as technology and security changes, our policies can change to meet new threats. Going forward, when a new policy is approved, or an old policy is revised, or deleted - the ITSP will be updated.
To make it easier to find what has changed in each version, a Change Log has been added to the ITSP after the table of contents. The log lists if the policy is new, a revision, or was deleted, and the date it occurred.
The new versions of the BIT and Client ITSP were leaned up by nearly 20 pages by removing the glossary. A Terms and Acronym Directory was created on the BIT intranet Policies page to provide you with one place to find definitions.
As always, the objective of the ITSP is to provide a comprehensive set of cyber security policies detailing the acceptable practices for use of State of South Dakota IT resources.
To make it easier to find what has changed in each version, a Change Log has been added to the ITSP after the table of contents. The log lists if the policy is new, a revision, or was deleted, and the date it occurred.
The new versions of the BIT and Client ITSP were leaned up by nearly 20 pages by removing the glossary. A Terms and Acronym Directory was created on the BIT intranet Policies page to provide you with one place to find definitions.
As always, the objective of the ITSP is to provide a comprehensive set of cyber security policies detailing the acceptable practices for use of State of South Dakota IT resources.