The 2009 DOC IT Security Program Minimum Implementation Standards are documented in the 2009 DOC IT Security Program Policy (ITSPP) and the Commerce Interim Technical Requirements (CITRs). The 2009 DOC ITSPP is available to DOC staff and contractors through the DOC Intranet. More information concerning the DOC ITSPP can be found on the Office of the Chief Information Officer (OCIO) Intranet page under the (OITSIT) section. Please update bookmarks/favorites.
- Update Enclosure to Commerce IT Security Program Policy - Two Factor Authentication and Data Extract Logging (February 2007)
- Electronic Transmission of Personally Identifiable Information (PII)
- Data Extract Log and Verify Requirement Memorandum (Word Document) (PDF)
General questions may be directed to the OITSIT staff at ITSecurity@doc.gov.
- Questions regarding this section may be directed to the IT Policy, Guidance & Legislation Administrator