Samples and Templates


Overview

Policy templates and sample language that can be used by agencies to develop or strengthen their internal policies, procedures and practices.

These samples should be modified to best meet the agency's business needs. It is recommended that the policy language be developed in consultation with your Legal Office, Human Resources, Labor Relations, Equal Employment Opportunity Office, Executive Management, Information Security Officer, Chief Information Officer, and Information Technology staff.

Topics on this page

Sample Asset Management Forms

Sample Agreements and Contract Language

Sample agreements and model language to include in contracts that require information security provisions provided by the California Office of Information Security and other government agencies.

Sample Request for Proposals (RFPs) and Request for Offers (RFOs)

Sample RFPs for seeking assistance with information security functions (such as risk assessments, and network scanning and penetration testing) provided by the State Information Security Office and other state agencies.

Information Security Policy Templates

Policy development templates provided by the State Information Security Office and other California state agencies.

Outline of Security Policy Components Acceptable Use Employee Acknowledgement Banner Language (Provided by California Office of Attorney General)

Other Resources for Information Security Policy Development

Policy Development Projects and Resources (Provided by various non-profit organizations)

Incident Management

Sample incident management related forms and tools provided by the State Information Security Office and other California state agencies.

Other Resources for Incident Management

Incident Management Resources (Provided by various non-profit organizations)

The California Office of Information Security (Office) web site contains links to other sites that are not owned or controlled by us. The information provided at these sites does not reflect the views of this Office or indicate an endorsement of a particular company or product. Please be aware that our Office is not responsible for the security and privacy practices of such other sites.

 

Last Updated: Friday, October 24, 2014