DoIT ACT, Policies & Rules

• DoIT Act

• NMAC 1.12.1 – General Provisions
• NMAC 1.12.3 – Electronic Mail Third-Party Relay
• NMAC 1.12.4 – MAGnet Network Aggregation
• NMAC 1.12.5 – Oversight of Information Technology Projects
• NMAC 1.12.6 – Architectural Configuration Requirements
• NMAC 1.12.7 – Electronic Authentication
• NMAC 1.12.8 – Notification of Internet Protocol Addresses
• NMAC 1.12.9 – Project Certification of Technology Projects
• NMAC 1.12.10 – Internet, Intranet, Email, and Digital Network Usage
• NMAC 1.12.11 – Enterprise Architecture (includes Password Policy)
• NMAC 1.12.12 – Application Software Selection
• NMAC 1.12.20 – Information Security Operation Management

• Executive Order No. 2008-011
• NM Employees Healthcare Order

• DoIT-361-4006-A – Domain Name Management Policy
• Physical Access Control Policy

• Telecommunications Building and Campus Distribution Systems Standards

• PM Express

• NMAC 1.12.6 – Architectural Configuration Requirements

Glossary:

• Glossary of Terms

Guidelines:

• N-GUIDE-001 – Network Guidelines
• S-GUIDE-002 – Enterprise IT Security

Standards:

• S-STD-001 – Authentication and Directory Services
• S-STD-002 – Configuration Management
• S-STD-003 – IT Risk Management
• S-POL-003 – Security Training and Awareness
• N-STD-004 – Firewall

• S-STD-004 – Account Management
• S-STD-005 – Network Security
• S-STD-006 – Virus and Malicious Code
• S-STD-007 – Session Controls
• N-STD-008 – Wireless Access Point Hardware
• S-STD-009 – IT Physical Security
• S-STD-010 – Backups
• S-STD-011 – Personnel Security

• S-STD-012 – Incident Response and Reporting