# Information Security Policies All current information security policies can be found on Google Drive. Please visit the following link to find out more: - **[Information Security Policies](https://drive.google.com/drive/folders/1aevEbdLd4R40NK30XJu92xyzT5lVqMlr?usp=sharing)** (Google Drive folder) These policies are developed, reviewed, and recommended by the Information Security Committee and approved by the Administrative Council. Below is a list of policies, links, and the last revision:
PolicyStatusRevisedReviewed
[IS0000 - MLC Information Security Policy](https://docs.google.com/document/d/1spMfM7rrnEUcenMpQ4ENfGJPyS8AohBHaiyS4GThoY8/edit#heading=h.acstzmdc8q57) Approved11/30/2023
[IS0000A - Appendix A - Personally Identifying Information That Is Generally Considered Public](https://docs.google.com/document/d/1NNiNm4Wb7nPWXBDFNPOnTxogNqISNrA3R4nOn4CZnR4/edit#heading=h.mqeimzmtg9io) Approved11/30/2023
[IS0000C - Appendix C - Table of Information Guardians and Designated Contacts](https://docs.google.com/document/d/1hL-3kSb1_XSHAs9bB-bUrYmJJ0S2C7ZLlw2vWxqegDg/edit) Approved11/30/2023
[IS0000D - Appendix D - Summary of End User Responsibilities](https://docs.google.com/document/d/1mbt7lgOHcn9ad_476fSp7Z_1FOC5lX5ODA7GynrarQ8/edit#heading=h.4f1mdlm) Approved11/30/2023
[IS0000E - Appendix E - Definitions](https://docs.google.com/document/d/1P1i0Tc6epnxCPHbHXvdl3EWBJ--f8ESHWv6jUZTm7-I/edit#heading=h.mqeimzmtg9io) Approved11/30/2023
[IS0001 - Encryption Policy](https://docs.google.com/document/d/192UsXqmvnz3SFat-Q1cBS-AXY8-s8TmygnpZhlhw3Cg/edit#heading=h.rai8l29vy1n4) Approved11/30/2023
[IS0002 - Multi-Factor Authentication Policy](https://docs.google.com/document/d/1QGuj468bJtiiFiHesJ1mr-aVGA9GxBG_aWDafn8kmrQ/edit#heading=h.rai8l29vy1n4) Approved11/30/2023
[IS0003 - Account and Access Control Review Policy](https://docs.google.com/document/d/1z7jP0cRuyOu_h8I8CUu8PeQUrmFTdDgsC1iXNLdL9_4/edit#heading=h.lvf10j1fw874) Approved11/30/2023
[IS0004 - Information Security Audit Policy](https://docs.google.com/document/d/1m-8n65QjSqtxTzeIwirdMeO2GykPpdThnetxJXoxpBI/edit#heading=h.rai8l29vy1n4) Approved11/30/2023
[IS0005 - Employee Information Security Policy](https://docs.google.com/document/d/1ekG39qHHaWmvVHZ0q98QZ6RkNIfKoYnEXI91TaZorSI/edit#heading=h.rai8l29vy1n4) Approved11/30/2023
[IS0006 - Incident Management Policy](https://docs.google.com/document/d/1e6kFbmhk82kXc5sUg8pST62uzPyMMs381AWUKrLDTBw/edit#heading=h.rai8l29vy1n4) Approved11/30/2023
[IS0007 - Incident Response Plan](https://docs.google.com/document/d/1wp7lvoHtsBnRfhNg4rJoLaCyLgEZG0kcR0zEH3gBDPs/edit) Approved11/30/2023
[IS0008 - Information Security Exception Policy](https://docs.google.com/document/d/1sMOaOX0TtMnJomumTjz5GLSK-PKpIWfXl-A1-I-PLQg/edit) Approved11/30/2023
[IS0009 - Data Classification Policy](https://docs.google.com/document/d/1-kzHPOa7GbhUKj9JjH7NXPc2EgY5fe4xoaU-_mXvOO0/edit#heading=h.rai8l29vy1n4) Approved11/30/2023
[IS0010 - Vulnerability and Effectiveness Management Policy](https://docs.google.com/document/d/1h-ppATGqFkgl-TPQ-GfSRZM6ZjlWBZb9fDJcgbEWLdQ/edit#heading=h.rai8l29vy1n4) Approved11/30/2023
[IS0011 - Asset Management Policy](https://docs.google.com/document/d/1BgoIU22JkyWbcWEJ7cbZLuUkZXO4eY7UeDRL2c61NAo/edit#heading=h.rai8l29vy1n4) Approved11/30/2023
[IS0012 - System Development and Procurement Policy](https://docs.google.com/document/d/17NE0K8r2m3EbebogFDhD528Ah8kT9BJ65dF9cqGX-is/edit#heading=h.rai8l29vy1n4) Approved11/30/2023
[IS0013 - Change Management Policy](https://docs.google.com/document/d/1dvB1GMhZzpUxqjTzSOLinPOvUeEvuZ28cOsCR4MyiEU/edit#heading=h.rai8l29vy1n4) Approved11/30/2023
[IS0014 - Vendor Management Policy](https://docs.google.com/document/d/18RDrDIA3tv13i3qBpE5FSGSSF2nTR08qgBJ7fy3WPoI/edit#heading=h.rai8l29vy1n4) Approved11/30/2023
[IS0015 - Information Security and Awareness Training Policy](https://docs.google.com/document/d/1IcIR56-hadkGUSYgrw2ouTykF_6uZUMf7jupuMZEr9U/edit#heading=h.rai8l29vy1n4) Approved11/30/2023