Non-State Device/Software Policy and Procedure Adopted

By, Lisa Leahy, OIT

The following policy and standard were recently adopted by the CIO. All staff engaged in operations, analysis or actions subject to or appropriate for the application of a policy, standard or procedure are responsible for becoming familiar, and complying, with the contents of all policies, standards and procedures. Supervisors are responsible for incorporating standard operating procedures to ensure their staffs are familiar with, and adhere to, the policies, standards or procedures affecting their program functions. All OIT policies, standards and procedures will be posted to the OIT Policy, Standards and Procedures web site upon adoption.

Policy Governing the Use of Non-State Owned/Approved Software and Devices for State Business
The purpose of this policy is to provide leadership and guidance to executive branch agencies and others with regard to the use of software and IT devices, not owned or leased by the State, to be used for State's business.

Procedure for the Use of Non-State Owned/Approved Software and Devices for State Business The purpose of this procedure is to govern the approval and use of non-state owned/approved software and devices and to establishes the conditions by which the assets may be configured, upgraded, maintained and supported, as billable services, in order to minimize security risks to the State's network or data sources.