Laws, Rules & Standards

Federal Regulations

• Federal Social Security Administration security standards
• Federal IRS Publication 1075
• FBI Criminal Justice Information Services
• Health Insurance Portability and Accountability Act (HIPAA)
• Family Educational Rights and Privacy Act (FERPA)
• Red Flags Rule

State of Iowa Enterprise IT Security Standards

• Information Security Policy (effective 6/30/2008) 
• Wireless LAN (effective 2/1/2009)
• Data Classification (effective 9/2/2014)
• Laptop Data Protection (effective 5/1/2012)
• Removable Storage Encryption (effective 6/22/2011)
• Authentication (effective 5/28/2013)
• Interconnectivity (effective 6/22/2011)
• Data Stewardship (effective 9/2/2014)
• Mobile Device Security (effective 12/31/2011)
• Information Security Compliance (effective (9/1/2010)
• Information Security Status Report (effective 1/20/2012)
• Web Application Security (effective September 30, 2010)
• Email (effective June 30, 2012)
• Social Networking (effective February 14, 2012)
• Telework (effective December 14, 2011)
• Vulnerability Management (effective September 30, 2012)