This page, Communication and Network Security Standard, is offered by
Advisory

Communication and Network Security Standard

Date: 10/05/2018
Organization: Enterprise Security Office
Referenced Sources: MGL Chapter 7D, Section 2

The Communication and Network Security Standard details requirements for network security management, remote access security management, third-party network access and secure file transfer by the Commonwealth of Massachusetts. 

Contact

Enterprise Security Office

Online

CommonwealthCISO@mass.gov
Skip table of contents

Table of Contents

Purpose

This standard establishes security requirements for the Commonwealth’s network infrastructure and connectivity, including:

  • Network architecture requirements to include redundancy, network segmentation, encryption and the documentation of network diagrams
  • Use of network infrastructure protection such as firewalls, intrusion detection systems, web-proxies and data loss prevention
  • Controls to protect end-point computing systems
  • Requirements for remote access
  • Requirements for third-party business-to-business connections
  • Requirements for secure file transfer

Downloads

IS.006 Communication and Network Security Standard (PDF 285.74 KB)

Contact

Online

CommonwealthCISO@mass.gov
Referenced Sources:
MGL Chapter 7D, Section 2
This is part of: Enterprise Information Security Policies and Standards 

IS.005 Business Continuity and Disaster Recovery Standard

IS.007 Compliance Standard
Feedback