Idaho

 
ITRMC
Information Technology Resource Management Council

Resources

• Policies with associated Standards and Guidelines
• Standards
• Guidelines
• Executive Orders
• 2011 Strategic Goals
• Federated Model of Governance
• 2009 Business Plan
• 2010 Annual Report
• 2011 Annual Report
• 2012 Annual Report
• 2012 State IT Strategic Plan
• 2012 State IT Projects Overview

ITRMC Policies (and associated Standards and Guidelines)

1000 - General

• P1010 - IT Policies, Standards, and Guidelines Framework
  • G120 - Exemption Process
• P1020 - Idaho.Gov Portal Privacy Notice
  • P5010 - Web Publishing
  • P5020 - .Gov Domain
  • S4221 - Metatags
  • S5120 - Web Publishing
  • G310 - Web Publishing
  • G410 - Idaho.gov and Id.gov Domains
• P1030 - Electronic Document Management
• P1040 - Employee Mail and Messaging Use
  • S2120 - Electronic Mail - Messaging
• P1050 - Employee Internet Use
• P1060 - Employee Personal Computer Use
  • G540 - Mobile Devices
• P1070 - Geographic Information Systems (GIS)
  • S4210 - Single Zone Coordinate System for GIS Data
  • S4220 - Geospatial Metadata
  • G320 - Metadata
  • G420 - Roles of GIS Participants

Software Standards
S2100 - Operating System (O/S)
S2110 - Office Suite
S2510 - Network Operating System

2000 - IT Planning

• P2010 - Information Technology Planning Process
  • G110 - Agency IT Plan
• P2020 - Business Recovery Planning
  • G110 - Agency IT Plan
  • G115 - Business Recovery Plan
  • G580 - Cyber Security Breach Notification
• P2030 - Information Technology Major Project Review
  • G110 - Agency IT Plan
  • G210 - Major Project Summary
  • G215 - Risk Assessment
  • G225 - Cost-Benefit Analysis
  • G230 - IT Projects Best Practices Checklist
• P2040 - Risk Assessment
  • G210 - Major Project Summary
  • G215 - Risk Assessment
• P2050 - Information Technology Security Framework

3000 - Telecommunications

• P3010 - Telecommunication Switching and Long distance Services
• P3020 - Connectivity and Transport Protocols
  • S3510 - Network Connectivity and Transport - Transport
  • S3520 - Network Connectivity and Transport - Local Area Network
  • S3530 - Network Connectivity and Transport - Wireless LAN
  • S3540 - Network Connectivity and Transport - LAN Backbone
  • S3550 - Network Connectivity and Transport - Structured Cabling
• P3030 - Wide Area Networks (WAN)
• P3040 - State 911 Multi-Line telephone Systems Network Services
  • S3100 - Network Services - Internet/Intranet Web Server
  • S3110 - Network Services - Internet/Intranet Web Browser
  • S3120 - Network Services - Data/Network Integrity
  • S3130 - Network Services - Video Conferencing

4000 - Security - General

• P4110 - Agency IT Security Coordinator
  • G510 - Cyber Security Incident Reporting Template
  • G520 - cyber Security Alert Indicator
  • G560 - Passwords
  • G570 - Patching & Vulnerability Management

Security Standards

• S2130 - Anti-Virus / Endpoint Security (AV/EPS)
  
• S3200 - Security - Firewall
  
• S3220 - Security - Virtual Private Network
  
• S3230 - Security - Server Security Requirements
  
  • G590A - Server Operating System; Initial Security Requirements
  • G590B - Public-Facing SQL Server Setup
  • G591B - SQL Injection Attacks: Information and Avoidance
  • G590C - Public-Facing Webserver Setup

4500 - Security - Computer and Operations Management

• P4510 - Cyber Security Incident Reporting
  • G510 - Cyber Security Incident Reporting Template
  • G520 - Cyber Security Alert Indicator
  • G580 - Cyber Security Breach Notification
• P4520 - Patch & Vulnerability Management
  • G570 - Patching & Vulnerability Management
  • G580 - cyber Security Breach Notification
• P4530 - Cleansing Data From Surplus Computer Equipment
  • G540 - Mobile Devices
  • G550 - Cleansing Data From Surplus Computer Equipment
• P4540 - Wireless Security for State Local Area Networks
  • S3530 - Network Connectivity and Transport - Wireless LAN
  • G530 - Wireless Local Area Network (LAN) Security
• P4550 - Mobile Device Management

5000 - Information and Data

• P5010 - Web Publishing
  • P1020 - Idaho.Gov Portal Privacy Notice
  • P5020 - .Gov Domain
  • S4221 - Metatags
  • S5120 - Web Publishing
  • G310 - Web Publishing
  • G410 - Idaho.gov and Id.gov Domains
• P5020 - .Gov Domain
  • G410 - Idaho.gov and Id.gov Domains
• P5030 - Framework Standards Development
  • S4230 - Data Exchange for Emergency Service Zones
  • S4231 - Structures and Landmarks Data Exchange
  • S4232 - Parcel Data Exchange

ITRMC Standards

Introduction

2000 - Software - Desktop, Notebook & Mobile Devices

• S2100 - Operating System (O/S)
• S2110 - Office Suite
• S2120 - Electronic Mail - Messaging
• S2130 - Anti-Virus/Endpoint Security (AV/EPS)
• S2140 - Mobile Device Security Capabilities

2500 - Software - Server

• S2510 - Network Operating System

3000 - Network and Telecommunications

• S3100 - Network Services - Internet/Intranet Web Server
• S3110 - Network Services - Internet/Intranet Web Browser
• S3120 - Network Services - Data/Network Integrity
• S3130 - Network Services - Video Conferencing
• S3131 - Network Servcies - Video Conference Dialing Plan
• S3200 - Security - Firewall
• S3220 - Security - Virtual Private Network
• S3230 - Security - Server Security Requirements
• S3510 - Network Connectivity and Transport - Transport
• S3520 - Network Connectivity and Transport - Local Area Network
• S3530 - Network Connectivity and Transport - Wireless LAN
• S3540 - Network Connectivity and Transport - LAN Backbone
• S3550 - Network Connectivity and Transport - Structured Cabling

4000 - Information and Data

• S4210 - Single Zone Coordinate System for GIS Data
• S4220 - Geospatial Metadata
  
• S4221 - Metatags
• S4230 - Data Exchange for Emergency Service Zones
• S4231 - Structures and Landmarks Data Exchange
• S4232 - Parcel Data Exchange
• S4240 - Idaho Land Cover Dataset Standard

5000 - Web

• S5120 - Web Publishing

ITRMC Guidelines

G100 - Information Technology Planning

• G110 - Agency IT Plan
• G115 - Business Recovery Plan
• G120 - Exemption Process

G200 - Project Profile

• G210 - IT Project Profile
• G215 - Risk Assessment
• G225 - Cost-Benefit Analysis
• G230 - IT Projects Best Practices Checklist

G300 - Information and Data

• G310 - Web Publishing
• G320 - Geographic Metadata
• G330 - Social Networking Sites (Draft)
• G340 - Statewide Geospatial Clearinghouse

G400 - Architecture and Design

• G410 - Idaho.gov, Id.gov Domains
• G420 - Roles of GIS Participants

G500 - Security Procedures

• G510 - Cyber Security Incident Reporting Template
• G510 - Appendix A
• G520 - Cyber Securty Alert Indicator
• G530 - Wireless Local Area Network (LAN) Security
• G540 - Mobile Devices
• G550 - Cleansing Data From Surplus Computer Equipment
• G560 - Passwords
• G570 - Patching & Vulnerabiltiy Management
• G580 - Cyber Security Breach Notification
• G590A - Server Operating System; Initial Security Requirements
• G590B - Public-Facing SQL Server Setup
• G591B - SQL Injection Attacks: Information and Avoidance
• G590C - Public-Facing Webserver Setup

Executive Orders

The following Executive Orders are referenced in some of the ITRMC Policies, Standards and Guidelines.

• Executive Order 2005-22 Establishing statewide policies on computer, internet and electronic mail usage by state employees.
• Executive Order 2010-07 Establishing the Idaho Geospatial Council.
• Presidential Executive Order 12906 (1994) Coordinating Geographic Data Acquisition and Access: The National Spatial Data Infrastructure.