Skip to main content
Policy Advisory

Policy Advisory  Access Management Standard

Date: 01/01/2025
Organization: Cybersecurity and Enterprise Risk Management
Referenced Sources: MGL Chapter 7D, Section 2

The Access Management Standard reinforces the Commonwealth’s commitment to an effective access management strategy and outlines the controls necessary to safeguard the Commonwealth’s information assets and reduce risks posed by improper management of access.

Contact

Cybersecurity and Enterprise Risk Management

Online

For cybersecurity or risk management questions: Email Cybersecurity and Enterprise Risk Management at ERM@mass.gov
Skip table of contents

Table of Contents

You skipped the table of contents section.

Purpose

The purpose of this standard is to document the framework, principles and controls of an effective access management strategy, and outline the access management requirements to safeguard information assets. The Commonwealth is committed to continually improving the information security program to meet its strategic objectives and ensure that it is able to adapt to changes in the cyber threat landscape, as well as evolving organizational, legal, and regulatory requirements. 

Downloads

Open PDF file, 235.5 KB,  IS.014 Access Management Standard (English, PDF 235.5 KB)

Contact

Online

For cybersecurity or risk management questions: Email Cybersecurity and Enterprise Risk Management at ERM@mass.gov
Referenced Sources:
MGL Chapter 7D, Section 2

Help Us Improve Mass.gov  with your feedback

Please do not include personal or contact information.
Feedback