Notice of Development of Rulemaking

AGENCY FOR ENTERPRISE INFORMATION TECHNOLOGY
Office of Information Security
RULE NO: RULE TITLE
71A-1.001: Purpose; Definitions; Applicability; Exceptions
71A-1.002: Agency Information Security Program
71A-1.003: Agency Information Technology Management
71A-1.004: Agency Contracts, Providers, and Partners
71A-1.005: Confidential and Exempt Information
71A-1.006: Minimum Security Requirements for Information and Information Technology Resources
PURPOSE AND EFFECT: To consider development of a new rule chapter to be the Florida Information Technology Resource Security Policies and Standards to:
1. Document a framework of information security policies and practices for state agencies in order to safeguard the confidentiality, integrity, and availability of Florida government data and information technology resources.
2. Define minimum standards to be used by state agencies to categorize information and information technology resources based on the objectives of providing appropriate levels of information security according to risk levels.
3. Define minimum management, operational and technical security controls to be used by state agencies to secure information and information technology resources.
SUBJECT AREA TO BE ADDRESSED: Information Security Policies and Standards.
SPECIFIC AUTHORITY: 282.318(5) FS.
LAW IMPLEMENTED: 282.318(5) FS.
IF REQUESTED IN WRITING AND NOT DEEMED UNNECESSARY BY THE AGENCY HEAD, A RULE DEVELOPMENT WORKSHOP WILL BE NOTICED IN THE NEXT AVAILABLE FLORIDA ADMINISTRATIVE WEEKLY.
THE PERSON TO BE CONTACTED REGARDING THE PROPOSED RULE DEVELOPMENT AND A COPY OF THE PRELIMINARY DRAFT, IF AVAILABLE, IS: Jean-Maree Phillips at (850)922-7502

THE PRELIMINARY TEXT OF THE PROPOSED RULE DEVELOPMENT IS AVAILABLE AT NO CHARGE FROM THE CONTACT PERSON LISTED ABOVE.