Risk Management

In 2008, the Office of Information Security will continue its work with agencies to secure their information technology infrastructures. Risk management is a critical part of developing a program to protect an agency's information assets. The Office of Information Security is developing a program to ensure that state agencies have developed security policies consistent with guidelines, have plans for efficiently implementing policies (specifically the mobile communications policy) and have effective tools for assessing and managing agency risks.

Guideline for Risk Management in Florida (PDF)

2008 Risk Assessment

2008 State of Florida Risk Assessment (PDF)
2008 Risk Assessment Standards Crosswalk (PDF)