Skip Maine state header navigation

Agencies | Online Services | Help

Maine State Government

Dept. of Administrative & Financial Services

Office of Information Technology (OIT)

Security Awareness Training Policy

I. Statement
The Security Awareness Training Policy establishes the minimum threshold of training for
State personnel to securely handle State information assets.
II. Purpose
State information is a valuable asset that must be secure, and protected from unauthorized use, disclosure, modification, and destruction. State personnel are the custodians of this valuable asset. Therefore, all State personnel must be educated in mitigating cyber threats to State information.
III. Applicability
This Security Awareness Training Policy applies to employees and contractors of the Executive Branch of Maine State Government. Employees and contractors are collectively referred to as personnel in this Policy.
IV. Responsibilities
A. Chief Information Officer: Executes this Policy for all information assets. B. Enterprise Security Officer: Owns, interprets, and enforces this Policy.
C. OIT Director of Workforce Development: Assists in enforcement of this Policy within OIT.
V. Directives
D. OIT will partner with State Agencies to deliver Security Awareness Training contents customized for individual Agencies.
E. All personnel within an Agency must complete the targeted Security Awareness
Training, once per annum, within a span of four weeks.
F. Agency personnel will receive four reminders, over the span of four weeks, to complete the targeted Security Awareness Training.
Page 1 of 2
Security Awareness Training Policy
G. If a person has not completed the targeted Security Awareness Training by the fourth week, then their immediate supervisor/manager will be notified. If the person has not completed the training within two additional weeks downstream of the four-week deadline, then the Agency Head will be notified.
VI. References
VII. Document Information
1. Document Reference Number:
2. Adoption Date: March 11, 2014
3. Effective Date: March 11, 2014
4. Revision Date: March 11, 2016
5. Point of Contact: Kelly Rickert, Workforce Development, Office of Information
Technology, State House Station #145, Augusta, ME 04333, (207) 624-9965.
6. Approved By: James R. Smith, Chief Information Officer, State House Station #145, Augusta, ME 04333, (207) 624-7568.
7. Position Title(s) or Agency Responsible for Enforcement: Daniel Durgin, Enterprise Security Officer, Office of Information Technology, State House Station #145, Augusta, ME 04333, (207) 624-9811.
9. Waiver Process: See the Waiver Policy1.

Page 2 of 2