Authority Documents in State Agency Add-ons
- Vicki McEwen
- Erwin Rydell
Target State Agency/Sector to Restrictions list
State Agency/Sector | Restriction | Published List link |
|---|---|---|
Energy NERC+ | energy | Â |
Alabama State Agencies | stateAgencyAlabama | Â |
California State Agencies | stateAgencyCalifornia | Â |
Texas State Agencies | stateAgencyTexas | Â |
New York State Agencies | stateAgencyNewYork | Â |
Colorado State Agencies | stateAgencyColorado | Â |
Arizona State Agencies | stateAgencyArizona | Â |
ADs to Target State Agency/Sector
Name | AD ID | Targe State Agency(s)/Sector | Restriction(s) | Restriction Implementation Date | CCH Publish Date | Add to CCH List? |
|---|---|---|---|---|---|---|
Policy 115: Electronic Signatures, 115-01 | 3818 | Alabama | Â stateAgencyAlabama | 5/13/24 | Â | Â |
Policy 101: Information Technology (IT) Governance, 101-01 | 3817 | Alabama | stateAgencyAlabama | 5/13/24 | Â | Â |
North American Electric Reliability Corporation Critical Infrastructure Protection Cyber Security - CIP-004-7 | 3908 | Energy | energy | Â | 4/10/24 | Â |
North American Electric Reliability Corporation Critical Infrastructure Protection Cyber Security - CIP-005-7 | 3907 | Energy | energy | Â | 4/12/24 | Â |
North American Electric Reliability Corporation Critical Infrastructure Protection Cyber Security - CIP-010-4 | 3906 | Energy | energy | Â | 4/17/24 | Â |
North American Electric Reliability Corporation Critical Infrastructure Protection Physical Security CIP-014-3 | 3905 | Energy | energy | Â | 4/17/24 | Â |
North American Electric Reliability Corporation Critical Infrastructure Protection Cyber Security - CIP-011-3 | 3904 | Energy | energy | Â | 4/15/24 | Â |
North American Electric Reliability Corporation Critical Infrastructure Protection Cyber Security - CIP-012-1 | 3903 | Energy | energy | Â | 4/15/24 | Â |
North American Electric Reliability Corporation Critical Infrastructure Protection Standards - CIP-013-2 | 3902 | Energy | energy | Â | 4/12/24 | Â |
North American Electric Reliability Corporation Critical Infrastructure Protection Standards Cyber Security - BES Cyber System Categorization CIP-002-5.1a | 2911 | None | Â | Â | 2/2/2018 | Â |
North American Electric Reliability Corporation Critical Infrastructure Protection Standards Cyber Security - Security Management Controls CIP-003-8 | 3439 | None | Â | Â | 4/27/22 | Â |
North American Electric Reliability Corporation Critical Infrastructure Protection Standards Cyber Security - Physical Security of BES Cyber Systems CIP-006-6 | 2909 | None | Â | Â | 1/23/18 | Â |
North American Electric Reliability Corporation Critical Infrastructure Protection Standards Cyber Security - System Security Management CIP-007-6 | 2902 | None | Â | Â | 2/13/18 | Â |
North American Electric Reliability Corporation Critical Infrastructure Protection Standards Cyber Security - Incident Reporting and Response Planning CIP-008-6 | 3442 | None | Â | Â | 5/2/24 | Â |
North American Electric Reliability Corporation Critical Infrastructure Protection Standards Cyber Security - Recovery Plans for BES Cyber Systems CIP-009-6 | 2907 | None | Â | Â | 2/1/18 | Â |
Policy 200: Information Technology Planning, 200-01 | 3820 | Alabama | stateAgencyAlabama | 5/13/24 | Â | Â |
Policy 235: Off-Contract IT Purchases, 235-01 | 3822 | Alabama | stateAgencyAlabama | 5/13/24 | Â | Â |
Policy 330: Software Use, 330-01 | 3824 | Alabama | stateAgencyAlabama | 5/13/24 | Â | Â |
Administrative Rule 471-x-1-.04: Electronic Records and Signatures | 3819 | Alabama | stateAgencyAlabama | 5/16/24 | Â | Â |
Policy 400: IT Project Governance, 400-02 | 3826 | Alabama | stateAgencyAlabama | 5/16/24 | Â | Â |
Standard 400S1: IT Project Governance Threshold, 400S1-02 | 3828 | Alabama | stateAgencyAlabama | 5/16/24 | Â | Â |
Policy 220: Information Technology Budgeting, 220-00 | 3821 | Alabama | stateAgencyAlabama | 5/16/24 | Â | Â |
Policy 500: Statewide Information Systems Architecture, 500-01 | 3833 | Alabama | stateAgencyAlabama | 5/16/24 | Â | Â |
Policy 530: Web Development, 530-00 | 3836 | Alabama | stateAgencyAlabama | 5/16/24 | Â | Â |
Policy 540: Email and Directory Services, 540-02 | 3840 | Alabama | stateAgencyAlabama | 5/16/24 | Â | Â |
Policy 230: Information Technology Procurement, 230-00 | 3823 | Alabama | stateAgencyAlabama | 5/16/24 | Â | Â |
Policy 410: IT Project Initiation, 410-02 | 3831 | Alabama | stateAgencyAlabama | 5/20/24 | Â | Â |
Standard 530S3: Online Security Statement, 530S3-00 | 3839 | Alabama | stateAgencyAlabama | 5/20/24 | Â | Â |
Policy 520: Domain Naming & Registration, 520-00 | 3835 | Alabama | stateAgencyAlabama | 5/20/24 | Â | Â |
Policy 390: Equipment Disposal - DRAFT, 390-01 | 3827 | Alabama | stateAgencyAlabama | 5/20/24 | Â | Â |
Policy 380: Computer Device Refresh, 380-01 | 3825 | Alabama | stateAgencyAlabama | 5/20/24 | Â | Â |
Policy 560: Cloud Storage Services, 560-01 | 3841 | Alabama | stateAgencyAlabama | 5/20/24 | Â | Â |
Standard 530S4: Hypertext Linking, 530S4-00 | 3842 | Alabama | stateAgencyAlabama | 5/20/24 | Â | Â |
Policy 420: IT Project Planning, 420-02 | 3830 | Alabama | stateAgencyAlabama | 5/20/24 | Â | Â |
Policy 430: IT Project Execution, 430-02 | 3832 | Alabama | stateAgencyAlabama | 5/20/24 | Â | Â |
Policy 440: IT Project Closure, 440-02 | 3834 | Alabama | stateAgencyAlabama | 5/20/24 | Â | Â |
Policy 600: Information Security, 600-01 | 3846 | Alabama | stateAgencyAlabama | 5/23/24 | Â | Â |
Policy 604: Cyber Security Incident Response, 604-01 | 3849 | Alabama | stateAgencyAlabama | 5/23/24 | Â | Â |
Standard 560S3: End-User Security Standards for Office 365, 560S3-01 | 3845 | Alabama | stateAgencyAlabama | 5/23/24 | Â | Â |
Policy 605: Configuration Management, 605-00 | 3850 | Alabama | stateAgencyAlabama | 5/23/24 | Â | Â |
Policy 602: Information Security for Service Providers, 602-00 | 3847 | Alabama | stateAgencyAlabama | 5/23/24 | Â | Â |
Standard 530S1: Online Privacy and Data Collection, 530S1-00 | 3838 | Alabama | stateAgencyAlabama | 5/23/24 | Â | Â |
Standard 530S2: Universal Accessibility, 530S2-00 | 3837 | Alabama | stateAgencyAlabama | 5/23/24 | Â | Â |
Policy 611: Risk Management, 611-00 | 3853 | Alabama | stateAgencyAlabama | 5/23/24 | Â | Â |
Standard 560S1: Data Loss Prevention for Cloud Services, 560S1-01 | 3844 | Alabama | stateAgencyAlabama | 5/23/24 | Â | Â |
Guideline 605G1: Configuration Management Process, 605G1-00 | 3852 | Alabama | stateAgencyAlabama | 6/4/24 | Â | Â |
Standard 622S1: Virtual Private Networks, 622S1-00 | 3857 | Alabama | stateAgencyAlabama | 6/4/24 | Â | Â |
Procedure 604P1: Incident Reporting, 604P1-00 | 3848 | Alabama | stateAgencyAlabama | 6/4/24 | Â | Â |
Guideline 611G1: Risk Assessment and Mitigation, 611G1-00 | 3854 | Alabama | stateAgencyAlabama | 6/4/24 | Â | Â |
Policy 630: Identification and Authentication, 630-01 | 3859 | Alabama | stateAgencyAlabama | 6/4/24 | Â | Â |
Policy 621: Network and Systems Access, 621-01 | 3855 | Alabama | stateAgencyAlabama | 6/4/24 | Â | Â |
Policy 651: Physical Security, 651-01 | 3874 | Alabama | stateAgencyAlabama | 6/4/24 | Â | Â |
Policy 622: Remote Access, 622-00 | 3856 | Alabama | stateAgencyAlabama | 6/4/24 | Â | Â |
Standard 622S2: Dial-In Access/Modem Use, 622S2-00 | 3858 | Alabama | stateAgencyAlabama | 6/4/24 | Â | Â |
Standard 560S2: System Security Standards for Office 365, 560S2-01 | 3843 | Alabama | stateAgencyAlabama | 6/4/24 | Â | Â |
Standard 643S3: Bluetooth Security, 643S3-00 | 3871 | Alabama | stateAgencyAlabama | 6/6/24 | Â | Â |
Policy 638: Mobile Device Access Control, 638-01 | 3862 | Alabama | stateAgencyAlabama | 6/6/24 | Â | Â |
Standard 638S1: Mobile Device Management, 638S1-01 | 3863 | Alabama | stateAgencyAlabama | 6/6/24 | Â | Â |
Policy 643: Wireless Security, 643-00 | 3870 | Alabama | stateAgencyAlabama | 6/6/24 | Â | Â |
Guideline 661G2: Security Engineering Principles, 661G2-00 | 3883 | Alabama | stateAgencyAlabama | 6/6/24 | Â | Â |
Standard 638S2: Mobile Device Use, 638S2-01 | 3864 | Alabama | stateAgencyAlabama | 6/6/24 | Â | Â |
Standard 643S1: Wireless Networks, 643S1-00 | 3872 | Alabama | stateAgencyAlabama | 6/6/24 | Â | Â |
Standard 662S3: Point-of-Sale Systems Security, 662S3-00 | 3875 | Alabama | stateAgencyAlabama | 6/6/24 | Â | Â |
Policy 641: External Connections, 641-00 | 3876 | Alabama | stateAgencyAlabama | 6/6/24 | Â | Â |
Policy 662: Systems Security, 662-00 | 3881 | Alabama | stateAgencyAlabama | 6/6/24 | Â | Â |
Standard 681S1: Information Protection, 681S1-00 | 3900 | Alabama | stateAgencyAlabama | 6/6/24 | Â | Â |
Policy 652: Card Key Access Control, 652-01 | 3873 | Alabama | stateAgencyAlabama | 6/6/24 | Â | Â |
Standard 643S2: Wireless Clients, 643S2-00 | 3878 | Alabama | stateAgencyAlabama | 6/6/24 | Â | Â |
Guideline 630G1: Biometric Authentication, 630G1-01 | 3861 | Alabama | stateAgencyAlabama | 6/6/24 | Â | Â |
Procedure 640P1: FTI Disclosure Awareness Training, 640P1-01 | 3865 | Alabama | stateAgencyAlabama | 6/6/24 | Â | Â |
Policy 640: Security Awareness and Training, 640-01 | 3866 | Alabama | stateAgencyAlabama | 6/18/24 | Â | Â |
Standard 641S1: Interconnecting IT Systems, 641S1-00 | 3868 | Alabama | stateAgencyAlabama | 6/18/24 | Â | Â |
Policy 675: Vulnerability Management, 675-00 | 3886 | Alabama | stateAgencyAlabama | 6/18/24 | Â | Â |
Policy 681: Information Protection, 681-00 | 3884 | Alabama | stateAgencyAlabama | 6/18/24 | Â | Â |
Policy 660: System Use, 660-01 | 3869 | Alabama | stateAgencyAlabama | 6/18/24 | Â | Â |
Policy 683: Encryption, 683-00 | 3889 | Alabama | stateAgencyAlabama | 6/18/24 | Â | Â |
Policy 672: Vulnerability Scanning, 672-00 | 3890 | Alabama | stateAgencyAlabama | 6/18/24 | Â | Â |
Policy 673: Backup and Recovery, 673-00 | 3891 | Alabama | stateAgencyAlabama | 6/18/24 | Â | Â |
Standard 630S1: Authenticator Management, 630S1-02 | 3860 | Alabama | stateAgencyAlabama | 6/18/24 | Â | Â |
Standard 660S1: User Rules of Behavior, 660S1-01 | 3867 | Alabama | stateAgencyAlabama | 6/18/24 | Â | Â |
Policy 661: Application Security, 661-00 | 3880 | Alabama | stateAgencyAlabama | 7/3/24 | Â | Â |
Guideline 662G2: BIOS Protection, 662G2-00 | 3887 | Alabama | stateAgencyAlabama | 7/3/24 | Â | Â |
Policy 674: Virus Protection, 674-01 | 3893 | Alabama | stateAgencyAlabama | 7/3/24 | Â | Â |
Standard 681S3: Media Sanitization, 681S3-00 | 3888 | Alabama | stateAgencyAlabama | 7/3/24 | Â | Â |
Standard 662S2: Client Systems Security, 662S2-03 | 3877 | Alabama | stateAgencyAlabama | 7/3/24 | Â | Â |
Standard 677S1: Log Management, 677S1-01 | 3892 | Alabama | stateAgencyAlabama | 7/3/24 | Â | Â |
Policy 677: Log Management, 677-00 | 3899 | Alabama | stateAgencyAlabama | 7/3/24 | Â | Â |
Policy 690: Disaster Recovery, 690-00 | 3894 | Alabama | stateAgencyAlabama | 7/3/24 | Â | Â |
Procedure 604P2: Cyber Security Incident Handling, 604P2-02 | 3851 | Alabama | stateAgencyAlabama | 7/3/24 | Â | Â |
Guideline 662G1: Systems Security, 662G1-00 | 3885 | Alabama | stateAgencyAlabama | 7/3/24 | Â | Â |
Policy 678: System Maintenance, 678-00 | 3901 | Alabama | stateAgencyAlabama | 7/3/24 | Â | Â |
Policy 682: Information Release, 682-00 | 3896 | Alabama | stateAgencyAlabama | 7/3/24 | Â | Â |
Policy 676: Monitoring and Reporting, 676-00 | 3897 | Alabama | stateAgencyAlabama | 7/3/24 | Â | Â |
Standard 674S1: Virus Protection, 674S1-00 | 3895 | Alabama | stateAgencyAlabama | 7/3/24 | Â | Â |
Standard 662S1: Server Security, 662S1-02 | 3879 | Alabama | stateAgencyAlabama | 7/3/24 | Â | Â |
Standard 681S2: Protecting Personally Identifiable Information, 681S2-00 | 3898 | Alabama | stateAgencyAlabama | 7/10/24 | Â | Â |
Guideline 661G1: Application Security, 661G1-01 | 3882 | Alabama | stateAgencyAlabama | 7/10/24 | Â | Â |
North American Electric Reliability Corporation Emergency Preparedness and Operations Reliability Standards - Event Reporting EOP-004-4 | 3923 | Energy | energy | Â | Â | Â |
North American Electric Reliability Corporation Personnel Performance, Training, and Qualifications Reliability Standards - Specific Training for Personnel PER-006-1 | 3944 | Energy | energy | Â | Â | Â |
North American Electric Reliability Corporation Personnel Performance, Training, and Qualifications Reliability Standards - Operating Personnel Credentials PER-003-2 | 3942 | Energy | energy | Â | Â | Â |
Â