STATUTORY REFERENCE/OTHER AUTHORITY: 19 V.S.A. § 7 (d)

APPROVAL DATE: 09/22/2003

APPROVED BY: Patricia A. McDonald, Secretary of Transportation

PURPOSE/COMMENT: To establish the authority for developing Agency Information Technology (IT) security procedures with Agency wide impact.

POLICY STATEMENT: The Agency is responsible for maintaining and disseminating networked information that is critical to the successful operation of the Agency's mission. Daily attacks on Agency servers threaten the integrity and the availability of that information. In our interconnected environment a successful attack on one system may compromise all other systems.

In order to defend Agency systems, the network requires careful configuration, ongoing monitoring, and the regular application of security patches and intrusion protection methods to ensure safety from these attacks. Consequently a focused effort is required to ensure the availability and integrity of the Agency's information needs.

It is the policy of the Vermont Agency of Transportation that the authority to develop and adopt (IT) Information Technology security procedures with Agency wide impact is reserved to the IT Manager II of the Information Technology Section or his/her
designee.


Approved: _______________________________ Date: _______________

Patricia A. McDonald, Secretary of Transportation