DoIT Standards and Procedures
NMAC Rules
- NMAC 1.12.1 – General Provisions
- NMAC 1.12.3 – Electronic Mail Third-Party Relay
- NMAC 1.12.4 – MAGnet Network Aggregation
- NMAC 1.12.5 – Oversight of Information Technology Projects
- NMAC 1.12.6 – Architectural Configuration Requirements
- NMAC 1.12.7 – Electronic Authentication
- NMAC 1.12.8 – Notification of Internet Protocol Addresses
- NMAC 1.12.9 – Project Certification of Technology Projects
- NMAC 1.12.10 – Internet, Intranet, Email, and Digital Network Usage
- NMAC 1.12.11 – Enterprise Architecture (includes Password Policy)
- NMAC 1.12.12 – Application Software Selection
- NMAC 1.12.20 – Information Security Operation Management
- Physical Access Control Policy
Architectural Configuration Requirements (ACRs)
- GLOSSARY:
- GUIDELINES:
- STANDARDS:
- S-STD-001 – Authentication and Directory Services
- S-STD-002 – Configuration Management
- S-STD-003 – IT Risk Management
- S-POL-003 – Security Training and Awareness
- N-STD-004 – Firewall
- S-STD-004 – Account Management
- S-STD-005 – Network Security
- S-STD-006 – Virus and Malicious Code
- S-STD-007 – Session Controls
- N-STD-008 – Wireless Access Point Hardware
- S-STD-009 – IT Physical Security
- S-STD-010 – Backups
- S-STD-011 – Personnel Security
- S-STD-012 – Incident Response and Reporting