HOME    SEARCH    ABOUT US    CONTACT US    HELP   
           
Rule: 44.3.2901 Prev     Up     Next    
Rule Title: DEFINITIONS
Add to My Favorites
Add to Favorites
Department: SECRETARY OF STATE
Chapter: ELECTIONS
Subchapter: Security
 
Latest version of the adopted rule presented in Administrative Rules of Montana (ARM):

Printer Friendly Version

44.3.2901    DEFINITIONS

As used in this subchapter, unless the context clearly indicates otherwise, the following definitions apply:

(1) �"Election security" means the process of implementing and maintaining protective measures that preserve the confidentiality, integrity, and availability of the election process.�This includes network and information security as well as physical security.

(2) �"Endpoint detection and response tool(s)" or "EDR tool(s)" means a software that continually monitors end-user devices to detect and respond to cyber threats.

(3) �"Qualified assessor" means a security professional who, at the time of engagement, is certified and in good standing with at least of one of the following security credentials which require passing an exam covering related security subject matter and possessing the required amount of relevant information security work experience (based on certification requirements in effect on December 1, 2023):

(a) �Certified�in Governance, Risk, and Compliance�(CGRC). �The requirements to obtain a CGRC credential can be found at https://www.isc2.org;

(b) �Certified Information Security Manager (CISM). �The requirements to obtain a CISM credential can be found at https://www.isaca.org;

(c) �Certified Information Systems Auditor (CISA).�The requirements to obtain a CISA credential can be found at https://www.isaca.org;

(d) �Certified Information Systems Security Professional (CISSP). �The requirements to obtain a CISSP credential can be found at https://www.isc2.org;

(e) �Certified in Risk and Information Systems Control (CRISC). �The requirements to obtain a CRISC credential can be found at https://www.isaca.org;

(f) �GIAC Critical Controls Certification (GCCC). �The requirements to obtain a GCCC credential can be found at https://www.giac.org;

(g) �GIAC Security Leadership Certification (GSLC). �The requirements to obtain a GSLC credential can be found at https://www.giac.org; or

(h) �GIAC Systems and Network Auditor (GSNA).�The requirements to obtain a GSNA credential can be found at https://www.giac.org.��


History: 13-1-205, MCA; IMP, 13-1-205, MCA; NEW, 2022 MAR p. 1089, Eff. 6/25/22; AMD, 2024 MAR p. 285, Eff. 2/10/24.


 

 
MAR Notices Effective From Effective To History Notes
44-2-271 2/10/2024 Current History: 13-1-205, MCA; IMP, 13-1-205, MCA; NEW, 2022 MAR p. 1089, Eff. 6/25/22; AMD, 2024 MAR p. 285, Eff. 2/10/24.
44-2-255 6/25/2022 2/10/2024 History: 13-1-205, MCA; IMP, 13-1-205, MCA; NEW, 2022 MAR p. 1089, Eff. 6/25/22.
Home  |   Search  |   About Us  |   Contact Us  |   Help  |   Disclaimer  |   Privacy & Security