Skip to main content
Policy Advisory

Policy Advisory  Software and Application Management Policy

Date: 01/01/2025
Organization: Cybersecurity and Enterprise Risk Management
Referenced Sources: MGL Chapter 7D, Section 2

The Software and Application Management Policy reinforces the Commonwealth’s commitment to an effective software and application management program. This document outlines the controls that must be developed and incorporated into the software and application lifecycle, in order to safeguard assets and reduce risks posed by improper management of software and applications within the Commonwealth’s information technology environment.

Contact   for Software and Application Management Policy

Cybersecurity and Enterprise Risk Management

Online

For cybersecurity or risk management questions: Email Cybersecurity and Enterprise Risk Management at ERM@mass.gov
Skip table of contents

Table of Contents

You skipped the table of contents section.

Purpose

The purpose of this policy is to establish the minimum security requirements that must be implemented to develop, test, install, manage, and terminate software programs, systems and applications. 

Downloads   for Software and Application Management Policy

Open PDF file, 202.23 KB,  IS.008 Software and Application Management Policy (English, PDF 202.23 KB)

Contact   for Software and Application Management Policy

Online

For cybersecurity or risk management questions: Email Cybersecurity and Enterprise Risk Management at ERM@mass.gov
Referenced Sources:
MGL Chapter 7D, Section 2

Help Us Improve Mass.gov  with your feedback

Please do not include personal or contact information.
Feedback