IT Security

IT Security ensures that an organization's material and software resources are used only for their intended purposes. At ITD, security is a part of everything we do. 

Security Goals

  1. Integrity: Guaranteeing that data is what it is believed to be
  2. Confidentiality: Ensuring that only authorized individuals have access to the resources being exchanged
  3. Availability: Guaranteeing the proper operation of information systems
  4. Non-repudiation: Guaranteeing that an operation cannot be denied
  5. Authentication: Ensuring that only authorized individuals have access to the resources

Security Best Practices

Security Awareness

Security Officers

Securing IT resources within ND state government requires collaboration among stakeholders. In accordance with the Incident Prevention/Response/Notification Standard, each customer of ITD shall designate an agency contact. That person, known as the agency's Security Officer, becomes part of a proactive group that communicates and corrects security incidents and vulnerabilities.

The primary communication channels used is the Security Officer's ListServ. For confidentiality reasons, membership to the list is managed by ITD. Customers may join the Security Officer's Listserv by sending an enrollment request along with their name, agency name, phone number, and email address to

Password Changes

ITD uses a challenge-question process to verify the identity of anyone requesting a password change. Individuals are required to complete an Online Password Information Form or provide the Service Desk with a Password Change Information Form (SFN52378) before ITD can reset their password.


Associated Rates

Title Current Rate Current One Time Fee
Technology Fee

Network access charge is assessed for each state FTE for statewide area network access and other network services. 


Related Standards and Guidelines

Access Control

Login and password policy and procedures

Active Directory

Policies and responsibilities for the installation and coordination of Active Directory in the state of North Dakota


Policies and responsibilities for the use of Anti-Virus and Anti-Malware tools


Ensures basic auditing requirements are in place

Employee Security Awareness

Ensures employees are informed of current security best practices recommended for technologies being utilized by the state.


Ensures that sensitive information is encrypted.

Incident Prevention, Response, and Notification

Ensures that any vulnerabilities or incidents are commumicated to the necessary individuals.

Mobile Device Access Control

Establishes security procedures for access to mobile devices.

Physical Access

Establishes physical security policies to minimize the risk of unauthorized access to the state government network.

Public Workstation Access

Establishes a public workstation security policy to minimize the risk of unauthorized access to the state government network.

Remote Access

Establishes policies to provide remote access capability without compromising the network.


National Cyber Security Awareness Month 2015Posted: Thursday, October 1, 2015 - 2:40pmNews

National Cyber Security Awareness Month (NCSAM) – celebrated every October - was created as a collaborative effort between government and industry to ensure every American has the resources they need to stay safer and more secure online.

Microsoft Ending Support for Older Versions of IEPosted: Tuesday, September 29, 2015 - 8:34pmNews

As of January 12,2016, Internet Explorer 11 will be the only supported version of Internet Explorer on Windows 7, Windows 8.1 and Windows 10.

State Cybersecurity Task Force CreatedPosted: Monday, September 28, 2015 - 6:25pmNews

On September 28th, Governor Jack Dalrymple announced he is forming a Cybersecurity Task Force to help address the rapidly evolving and expanding cyber threats facing the nation and the potential impact on North Dakota’s state government.

Windows Server 2003 Support Ends July 14, 2015 Posted: Friday, June 19, 2015 - 2:12pmNews

This is a reminder that on Tuesday, July 14, 2015, Microsoft will discontinue support for the Windows 2003 Server Operating System.

ND Login Forced Password ChangePosted: Thursday, June 18, 2015 - 2:26pmNews

After June 21st, users of an ND State Login account will be required to update their password upon their next successful login.


North Dakota Cyber Security ConferenceEvent occurs on: Tuesday, March 17, 2015 - 8:00amEvent

The North Dakota Cyber Security Conference brings together community members from academia, government and industry to share strategies, best practices and innovative solutions to address today