Information Technology Policies, Standards and Procedures

Information Technology (IT) Policies, Standards, and Procedures are based on ADOA-ASET strategies and frameworks. They provide a comprehensive framework of business principles, best practices, technical standards, migration, and implementation strategies that direct the design, deployment, and management of IT for the State of Arizona.

Please note that the P8000: Information Security Policies, Standards and Procedures have been moved to the new Department of Homeland Security Information Technology (IT) Policies, Standards, and Procedures webpage.

A PSP Frequently Asked Questions (FAQs) document is now available. If additional information is needed, please reach out to [email protected].

Please note the Category and Status filters below. The Category filter allows the user to view only one category of PSPs at a time if desired. The Status filter allows the user to view PSPs that are either "In Force" or "Open for Comment Until". "Open for Comment Until" shows PSPs in draft form that are open for a two-week period to receive feedback prior to being approved and published as "In Force."

P1000: IT Governance

**1050 IT Policies, Standards & Procedures Program**
P1050 - IT Policies, Standards & Procedures Program
T1050 - Policy Template
T1060 - Standard Template
T1070 - Procedure Template

**1100 Cloud First**
P1100 - Cloud First Policy 1.1
S1100 - Cloud First Exception Request Standard 1.3

**1110 Google Workspace Platform**
S1110 - Google Workspace Platform Standard

**1250 Website and Application Design**
P1250 - Website and Application Design Policy

**1300 Accessibility of Electronic or Information Technology**
P1300 - Accessibility of Electronic or Information Technology Policy

**1310 Domain Naming**
P1310 - Domain Naming Policy
S1310 - Domain Naming Standard

**1360 Information Technology Planning**
P1360 - Information Technology Planning Policy

**1550 Change Control & Management**
P1550 - Change Control & Management Policy
S1550 - Change Control & Management Standard

**1650 Release Management**
P1650 - Release Management Policy

**3400 Project Investment Justification**
P3400 - Project Investment Justification Policy
S3430 - Project Oversight
S3400 - Project Investment Justification Standard
S3410 - Project Status Reporting

P4400: Data Governance

**4400 Data Governance Organization**
P4400 - Data Governance Organization Policy
S4400 - Data Governance Organization Policy Exception Standard

**4430 Data Governance Technology**
P4430 - Data Governance Technology Policy

**4440 Interagency Data Sharing**
P4440 - Data Governance Data Interoperability Policy
T4440 - AZ Standard Data Sharing Agreement Template
Enterprise Data Sharing Memorandum of Understanding (Amended)

**4450 Data Governance Data Operations**
P4450 - Data Governance Data Operations Policy

**4460 Data Governance Data Quality**
P4460 - Data Governance Data Quality Policy

**4465 State-Owned Cloud Data**
P4465 - State-Owned Cloud Data Policy

**4470 Data Governance Documentation**
P4470 - Data Governance Documentation Policy

**Implementation Guidelines**
Data Governance Policy Implementation Guidelines

P5000: Collaboration and Communication

**5050 Social Media**
P5050 - Social Media Policy

**5070 Electronic and Digital Signature**
P5070 - Electronic and Digital Signature Policy

P6000: State Data Center

**6000 State Data Center Contingency Planning**
P6000 - State Data Center Contingency Planning Policy

**6100 State Data Center Infrastructure Configuration Management and Change Control**
P6100 - State Data Center Infrastructure Configuration Management and Change Control Policy

**6200 State Data Center Physical Security**
P6200 - State Data Center Physical Security Policy

P7000: Enterprise Architecture

**7100 Network Architecture**
P7100 - Network Architecture Policy
S7100 - Network Infrastructure Standard

**7300 Software Architecture**
P7300 - Software Architecture Policy