nd.gov - The Official Portal for North Dakota State Government
North Dakota: Legendary. Follow the trail of legends

Operating System (OS) Critical Updates

Policy Code: 
DT001-04.3
Effective Date: 
March 15, 2004
Revision Number: 
3
Revision Date: 
January 10, 2012

Purpose

Minimize NCD security vulnerabilities.

Standard

All critical updates will be installed within 14 days of the release date on all Network Connected Devices (NCDs).

Policy

All NCDs attached to the State network will be kept current with critical updates.

Applicability

This standard applies to all executive branch state agencies excluding the University Systems Office and other higher education institutions, i.e campuses and agricultural and research centers.

Definition

Network Connected Devices
A device on a network that provides computing resources to one or more end users. Devices include but are not limited to tablets, laptops, desktops, workstations, printers, multi-function printers, and mobile devices.
Critical Updates
Any updates, excluding service packs or general OS updates, which the OS vendor defines as critical or security related.

Non-Compliance

Non-compliance with this standard shall be reported to the Office of the State Auditor.

Noncompliance to this standard has been classified as high-risk i.e. having impact on the integrity of enterprise information systems.  Violations to this standard will result in ITD operations taking immediate action to prevent enterprise risk prior to the reporting of non-compliance to the Office of the State Auditor.

Version Control: 
This standard supersedes DT001-04.2
 

What Our Customers Are Saying

Job well done! Thanks!

Bank of North Dakota
August 29, 2014
 
 

Copyright © 2014 North Dakota Information Technology Department - ITD
Use Adobe Reader to view, print and collaborate on PDF files.