DoIT ACT, Policies & Rules
DoIT ACT, Policies & Rules
The New Mexico Department of Information Technology was created pursuant to the Department of Information Technology Act, NMSA 1978, Section 9-27-1 through 9-27. This page provides access to the DoIT Act, departmental policies, and administrative rules governing information technology in the State of New Mexico.
DoIT Act
| Title | Open File |
|---|---|
| DoIT Act | Open |
NMAC DoIT Rules
| Title | Open File |
|---|---|
| NMAC 1.12.1 – General Provisions | Open |
| NMAC 1.12.3 – Electronic Mail Third-Party Relay | Open |
| NMAC 1.12.4 – MAGnet Network Aggregation | Open |
| NMAC 1.12.5 – Oversight of Information Technology Projects | Open |
| NMAC 1.12.6 – Architectural Configuration Requirements | Open |
| NMAC 1.12.7 – Electronic Authentication | Open |
| NMAC 1.12.8 – Notification of Internet Protocol Addresses | Open |
| NMAC 1.12.9 – Project Certification of Technology Projects | Open |
| NMAC 1.12.10 – Internet, Intranet, Email, and Digital Network | Open |
| NMAC 1.12.11 – Enterprise Architecture (includes Password Policy) | Open |
| NMAC 1.12.12 – Application Software Selection | Open |
| NMAC 1.12.20 – Information Security Operation Management | Open |
DoIT IT and Cyber-related Policies
| Title | Open File |
|---|---|
| 361-700 Information Security Policy | Open |
| 361-701 Acceptable Use of IT Resources Policy | Open |
| 361-702 Anti Malware Virus Policy | Open |
| 361-703 IT Change Management Policy | Open |
| 361-704 Data Classification Policy | Open |
| 361-705 Domain Name Management Policy | Open |
| 361-706 Firewall Policy | Open |
| 361-707 Incident Response Policy | Open |
| 361-708 Information Systems Logging and Monitoring Policy | Open |
| 361-709 Information Risk Assessment Policy | Open |
| 361-710 Enterprise Mobile Device Security and Usage Policy | Open |
| 361-711 IT Network Device Configuration Policy | Open |
| 361-712 Patching and Updating Policy | Open |
| 361-713 Physical Access Control Policy | Open |
| 361-714 Remote Network Access Policy | Open |
| 361-715 Security Awareness Training Policy | Open |
| 361-716 Systems Configuration Policy | Open |
| 361-718 Vulnerability Management and Assessment Policy | Open |
| 361-719 Wireless Security Policy | Open |
Telecommunications Standards
| Title | Open File |
|---|---|
| Telecommunications Building and Campus Distribution Systems | Open |
PM Express
| Title | Open File |
|---|---|
| PM Express Quick Reference Guide | Open |
Architectural Configuration Regulations (ACRs)
| Title | Open File |
|---|---|
| NMAC 1.12.6 – Architectural Configuration Requirements | Open |
| Glossary of Terms | Open |
| N-GUIDE-001 – Network Guidelines | Open |
| S-GUIDE-002 – Enterprise IT Security | Open |
| S-STD-001 – Authentication and Directory Services | Open |
| S-STD-002 – Configuration Management | Open |
| S-STD-003 – IT Risk Management | Open |
| S-POL-003 – Security Training and Awareness | Open |
| N-STD-004 – Firewall | Open |
| S-STD-004 – Account Management | Open |
| S-STD-005 – Network Security | Open |
| S-STD-006 – Virus and Malicious Code | Open |
| S-STD-007 – Session Controls | Open |
| N-STD-008 – Wireless Access Point Hardware | Open |
| S-STD-009 – IT Physical Security | Open |
| S-STD-010 – Backups | Open |
| S-STD-011 – Personnel Security | Open |
| S-STD-012 – Incident Response and Reporting | Open |
Contact NMDOIT
505-827-0000 EnterpriseSupportDesk@state.nm.us