Communication and Network Security Standard

Date:	10/05/2018
Organization:	Cybersecurity and Enterprise Risk Management
Referenced Sources:	MGL Chapter 7D, Section 2

Date:

10/05/2018

Organization:

Cybersecurity and Enterprise Risk Management

Referenced Sources:

MGL Chapter 7D, Section 2

Contact

For cybersecurity or risk management questions: Email Cybersecurity and Enterprise Risk Management at ERM@mass.gov

Purpose

This standard establishes security requirements for the Commonwealth’s network infrastructure and connectivity, including:

Network architecture requirements to include redundancy, network segmentation, encryption and the documentation of network diagrams
Use of network infrastructure protection such as firewalls, intrusion detection systems, web-proxies and data loss prevention
Controls to protect end-point computing systems
Requirements for remote access
Requirements for third-party business-to-business connections
Requirements for secure file transfer

Contact

Help Us Improve Mass.gov with your feedback

Did you find what you were looking for on this webpage?

Yes

If you have any suggestions for the website, please let us know. How can we improve the page?

Please do not include personal or contact information.

The feedback will only be used for improving the website. If you need assistance, please contact the Executive Office of Technology Services and Security. Please limit your input to 500 characters.

Please remove any contact information or personal data from your feedback. You will NOT get a response.

Please let us know how we can improve this page.

Please remove any contact information or personal data from your feedback. You will NOT get a response.