Executive Office of Technology Services and Security Policies

Your password is all that is standing in between you and the bad actors. Choosing a strong password will help keep your online life and personal information safe from those who should not have access to it.

The Physical and Environmental Security Standard establishes requirements to ensure that the Commonwealth’s information assets are protected by physical and environmental controls that prevent tampering, damage, theft or unauthorized physical access.

Learn how government employees and people who live in Massachusetts can report a cybersecurity threat.

To report a security incident, contact the EOTSS Information Security Office by submitting an incident ticket using the Service Now platform or call the EOTSS Service Desk directly at (844) 435-7629. An incident is any event that threatens the security, confidentiality, integrity, or availability of Commonwealth of Massachusetts assets (electronic or paper), information systems, and/or the networks that deliver the information.

Not sure who to call for help? For your convenience, Commonwealth Executive Branch agency IT help desk information has been provided below. 

Terms of use for the Commonwealth Secure Email System.

Executive Office of Technology Services and Security The Secure System and Software Lifecycle Management Standard establishes requirements for identifying controls to be incorporated in system and software planning, design, building, testing and implementation.

The EOTSS Secure WiFi Standards refer to dedicated Commonwealth wireless local area network access at various Commonwealth agency locations. The service is built in a manner to ensure that only authorized devices can access Commonwealth resources. These security measures are in place to guard against unauthorized access to secure SSIDs and the capturing of user data over the air.

EOTSS has standardized on and is implementing a VMP throughout the Commonwealth enterprise. All executive branch entities and other state agencies as determined by the Secretary/CIO of Technology Services and Security under Chapter 7D are required to comply with this program. There will be corresponding Administrative Directives published in support of this program.

The Commonwealth's IT platform for technology support and services.