Enterprise Security Program
ITS manages the State of Mississippi Enterprise Security Program to provide coordinated oversight of the cybersecurity efforts across all state agencies, including cybersecurity systems, services and development of policies, standards and guidelines.
Enterprise Security Policies and Standards
The State of Mississippi Enterprise Security Policy applies to all Mississippi executive and judicial branch agencies and educational institutions, as provided by law, that operate, manage, or use IT services or equipment to support state business and educational functions.
The Enterprise Security Plan outlines the short term and long range security goals and objectives for ITS.
Agencies must report security incidents to ITS. ITS has provided information regarding the guidelines for incident reporting or responding to notifications received from ITS.
The Enterprise Security Policy has specific requirements regarding security vulnerability assessments. ITS has provided detailed information about the requirements along with some tools and guidelines for compliance.
The Enterprise Security Policy has specific requirements for creating and maintaining security plans. ITS has provided detailed information about the requirements along with some tools and guidelines for compliance.
State employees are encouraged to take advantage of the cybersecurity training opportunities.
ITS maintains a subscription for a CIS SecureSuite Membership that gives each state agency (state agencies only) access to high quality, cost-effective resources. The membership combines two recognized industry standards, the powerful CIS Benchmarks standards with the globally-recognized guidance of the CIS Controls best practices providing members with unprecedented insight and guidance on how to protect their critical systems against cyber attacks. This membership is available to state agency employees.