Montana Code Annotated 2023

TITLE 2. GOVERNMENT STRUCTURE AND ADMINISTRATION

CHAPTER 17. PROPERTY AND SYSTEMS DEVELOPMENT AND MANAGEMENT

Part 5. Information Technology -- Internet Privacy

Security Responsibilities Of Department

2-17-534. Security responsibilities of department. The department is responsible for providing centralized management and coordination of state policies for security of data and information technology resources and shall:

(1) establish and maintain the minimum policies, framework, controls, standards, procedures, and guidelines to implement 2-15-114, including the physical security of information technology resources and the state telecommunications network;

(2) establish guidelines to assist agencies in identifying information technology personnel occupying positions of special trust or responsibility or sensitive locations;

(3) establish standards and policies for the exchange of data between any agency information technology resource and any other state agency, private entity, or public entity to ensure that exchanges do not jeopardize data security and confidentiality;

(4) coordinate and provide for a training program regarding security of data and information technology resources to serve governmental technical and managerial needs;

(5) include appropriate security requirements in the specifications for solicitation of state contracts for procuring data and information technology resources; and

(6) on request, provide technical and managerial assistance relating to information technology security.

History: En. Sec. 3, Ch. 592, L. 1987; amd. Sec. 31, Ch. 313, L. 2001; Sec. 2-17-503, MCA 1999; redes. 2-17-534 by Sec. 44(3), Ch. 313, L. 2001; amd. Sec. 16, Ch. 365, L. 2023.