Arkansas Administrative Code
Agency 200 - Office of Information Technology
Rule 200.00.03-005 - Personnel Security
Current through Register Vol. 49, No. 2, February 2024
1.0 Purpose
All information assets handled by computer systems must be adequately protected against unauthorized modification, disclosure, or destruction. Personnel security is necessary to uphold access control and to limit information retrieval to a need to know basis.
2.0 Scope
This standard statement applies to all state agencies, public schools, institutions of higher education, boards and commissions.
3.0 Background
The Arkansas Information Systems Act of 1997 (Act 914, 1997) gives the Office of Information Technology the authority to define standards, policies and procedures to manage the information resources within the state. This is accomplished through work with a multi-agency working group known as the Shared Technical Architecture Team.
In addition, Act 1042 of 2001 states that the Executive Chief Information Officer oversees the development of information technology security policy for state agencies.
4.0 References
5.0 Standard
6.0 Procedures
The agency shall be able to demonstrate compliance with this policy.
7.0 Revision History
Date |
Description of Change |
02/28/2004 |
Original Standard Statement Published |
8.0 Definitions
9.0 Resources
10.0 Inquiries
Direct inquiries about this policy to:
Office of Information Technology
Shared Technical Architecture
124 West Capitol Avenue Suite 200, Little Rock, Arkansas 72201
Voice: 501-682-4300
FAX: 501-682-2040
Email: ITarch@mail.state.ar.us
OIT policies can be found on the Internet at: http://www.techarch.state.ar.us
11.0 Attachments
As required