Operational Security Standard: Management of Information Technology Security (MITS)

Skip to content Skip to institutional links

Common menu bar links

Institutional Links

Treasury Board Policy Suite

About the TB Policy Suite

Operational Security Standard: Management of Information Technology Security (MITS)

Collapse the Tools & Resources toolbox

Tools & Resources

Table of Contents Complete Text Alternate Formats Related Instruments Policies Directives Related Links Guides Legislation and Regulations Web sites Abbreviations

Table of Contents

Part I - Introduction 1. Purpose 2. Scope and Application 3. Risk Management Philosophy 4. Principles 5. Related Policies and Standards 6. Structure of This Standard 7. Lead Departments and Agencies Part II - Departmental IT Security Organization and Management 8. Introduction 9. Roles and Responsibilities 10. Departmental IT Security Policy 11. IT Security Resources for Projects 12. Management Controls Part III - Technical and operational safeguards 13. Graduated Safeguards 14. IT Processes That Support Security 15. Active Defence Strategy 16. Prevention 17. Detection 18. Response and Recovery Appendix A - Related Legislation, Policies and Standards Appendix B - Glossary

View the complete text