Executive Office of Technology Services and Security Policies

This standard reinforces the Commonwealth’s commitment to an effective business continuity and disaster recover strategy and outlines the controls necessary to safeguard the Commonwealth’s information assets and reduce risks.

EOTSS Telecommunication and Network cabling standards for Executive Branch Agencies.

The Change and Configuration Management Policy establishes the minimum security requirements and key information security considerations that Commonwealth Agencies and Offices must implement.

This page provides information about Chargeback services. You can access the Chargeback billing system, guide, and rate schedule here.

The Commonwealth's VPN service is available to Commonwealth of Massachusetts Executive Branch and certain non-Executive Branch agencies and their authorized business partners.

Web content filtering is the practice of blocking access to web content that may be deemed offensive, inappropriate, or even dangerous.

This standard reinforces the Commonwealth’s commitment to an effective communication and network strategy and outlines the controls necessary to safeguard the Commonwealth’s information assets and reduce risks.

The Communication and Network Security Standard details requirements for network security management, remote access security management, third-party network access and secure file transfer by the Commonwealth of Massachusetts.

The Compliance Standard defines the requirements to ensure that the Commonwealth complies with all relevant legislative, regulatory, statutory and contractual requirements related to information security.

This standard reinforces the Commonwealth’s commitment to an effective compliance agenda and outlines the controls necessary to safeguard the Commonwealth’s information assets and reduce risks.