Skip to:

Information Security

IT Security is a high-profile issue for agencies. MN.IT takes the lead in providing directives, resources, and applications to aid agencies in protecting their information assets.


Enterprise Security Program Policy

Enterprise Security Controls Policies

The following management control policies represent the overarching policy direction for managing security risks to the State's information. The process of information security risk management is fundamental to enabling agency leadership to make more informed, risk-based decisions for addressing security risks across their environment and the executive branch as a whole.

Enterprise Security Management Control Policy

Enterprise Security Operational Control Policy

Enterprise Security Technical Control Policy

Enterprise Security Policy on Electronic Mail