Official websites use .mass.gov

A .mass.gov website belongs to an official government organization in Massachusetts.
Secure websites use HTTPS certificate

A lock icon or https:// means you’ve safely connected to the official website. Share sensitive information only on official, secure websites.

Skip to main content

Contrast Settings
We are testing UserWay, a tool that will let you change color contrast and other visual styles. Click the button below to open the settings.
If you'd like to share your feedback on this specific feature and help us make the site more accessible, please fill out this short survey.
State Organizations

This page, Vulnerability Management Standard, is offered by
Executive Office of Technology Services and Security

Advisory

Advisory Vulnerability Management Standard

Date:	10/05/2018
Organization:	Cybersecurity and Enterprise Risk Management
Referenced Sources:	MGL Chapter 7D, Section 2

The Vulnerability Management Standard documents the requirements to protect, detect and recover from vulnerabilities in the technology environment and applies to all Executive Department offices and agencies.

Cybersecurity and Enterprise Risk Management

Online

For cybersecurity or risk management questions: Email Cybersecurity and Enterprise Risk Management at ERM@mass.gov

Skip table of contents

Table of Contents

You skipped the table of contents section.

Purpose

The purpose of this standard is to document the requirements to protect, detect and recover from vulnerabilities in the technology environment.

Contact

Online

For cybersecurity or risk management questions: Email Cybersecurity and Enterprise Risk Management at ERM@mass.gov

Help Us Improve Mass.gov with your feedback

Did you find what you were looking for on this webpage?

Yes

No

If you have any suggestions for the website, please let us know. How can we improve the page?

Please do not include personal or contact information.

The feedback will only be used for improving the website. If you need assistance, please contact the Executive Office of Technology Services and Security. Please limit your input to 500 characters.

Please remove any contact information or personal data from your feedback. You will NOT get a response.

If you need assistance, please contact the Executive Office of Technology Services and Security.

Please let us know how we can improve this page.

Please remove any contact information or personal data from your feedback. You will NOT get a response.

If you need assistance, please contact the Executive Office of Technology Services and Security.