The IOT Information Security Framework (ISF) comprises Statewide Policies that apply to all State of Indiana Executive Branch agencies, employees, contractors, vendors, and third-party consultants. By law, the ISF is confidential information. The ISF establishes Statewide Policies to protect State of Indiana information resources and ensure compliance with additional regulations and standards. The ISF aligns with the NIST Cybersecurity Framework and NIST Special Publication 800-53 Rev. 4.

Statewide Policy Map

Use this “map” to find related policies within specific topic groups.

Links to Statewide Policies

Members of the State of Indiana network can access Policies through Archer, IOT’s governance, risk, and compliance tool, or by using the following links. To access Archer, you must login via the State VPN tool.

Exporting Policies

To export a Policy, go to the Archer Policy Portal, scroll down to the EXPORT window, click on any policy, click the export icon in the upper-right corner, and choose PDF. To access Archer, you must login via the State VPN tool. For more details on exporting a Policy, go to IOT Risk & Compliance Videos, and click on How to Export a Policy.