OAR 291-005-0015
General
(1)
These rules cover the following assets of the department:(a)
Any and all information regarding or related to the department’s business and mission, where that information is stored as data contained in or on any information system, or produced for display and review by that system.(A)
Such data may be recorded on a number of different media, such as magnetic tapes, magnetic or optical disks, hard or floppy disks, CD ROM, and a variety of printed forms on paper, etc.(B)
This data may be stored, processed, accessed, and displayed on any number of computer systems including, but not limited to, those owned and operated by the department, its employees, contractors, and consultants.(b)
The information systems equipment, specifically the computer hardware and software, peripheral devices, network components, data communications devices, terminals, personal computers, and printers which are owned, leased and/or operated by the department to store, process, and display information.(c)
Access to and use of the department’s information systems.(2)
These rules specify the means to detect and prevent misuse and/or loss of any of these assets. It covers the range of misuse from innocent accidents which cause little or no damage to malicious actions which cause data corruption, loss of information, and denial of services.
Source:
Rule 291-005-0015 — General, https://secure.sos.state.or.us/oard/view.action?ruleNumber=291-005-0015.