Welcome to Montana Information Security Site


     Steve Bullock

"Technology plays a major role in providing services to the citizens of the State of Montana, ..."

Click here to read Governor Bullock's September 3, 2013 announcement for Cyber Security Training.

Remember Cyber Security Awareness Month, October 2014!


 InfoSec Awareness & Training

 Law, Policy & Procedures  -  Incident Reporting & Service Desk Support 


Heartbleed Vulnerability Advisory

A major vulnerability named Heartbleed was disclosed on April 7, 2014. The vulnerability is estimated to affect more than half a million websites on the Internet. Sites affected can have login credentials and other sensitive data stolen. Since its disclosure, many site administrators have taken measures to upgrade or patch their sites as a means of mitigation. The State of Montana believes it is a good idea for Internet users to change their passwords. Before changing passwords, it is important to check that the site in question is no longer vulnerable. The below sites can help tell you if a site is vulnerable: 

   Heartbleed Test - a tool for checking the status of individual websites

   Heartbleed Hit List - a listing of some popular websites and their vulnerability status

Please be wary of emails you might receive from website administrators asking you to change your password. The State of Montana has received information about phishing emails prompting users to click a link to change their password. Avoid responding to emailed invitations to reset your password; rather, visit the site manually, either using a trusted bookmark or searching for the site in question then logging in and changing your password in the account settings.

The State of Montana has verified that ePass, which is used for logging into State of Montana websites to conduct business, is not vulnerable. We will continue to monitor the situation and provide updates as needed.     

InfoSec Awareness & Training Page - UPDATED with SANS Administrator's Guide 

XP Operating System and Office 2003 NOTICE! = Effective April 8, 2014: Microsoft will no longer support Windows XP or Office 2003. Any system that continues to use these two products after April 8, 2014 will become vulnerable and open to security threats as patches and program updates will no longer be available to address the new security threats that will follow.

   Click HERE for GARTNER article on vulnerabilities.

   Click HERE for Windows lifecycle fact sheet.

    Click HERE for Windows information on Why, What and How?

    Click HERE for Windows options.


Program Mission and Introduction

Vision: A Unified front on state-wide security protecting sensitive information and personal identity for Montana Citizens and Visitors to this Treasure State.

Mission: The State of Montana Information Systems Security Office (ISSO) provides solutions and services with a thorough understanding of the confidentiality, integrity, and availability of information systems utilizing a flexible strategy, collaborative approach, and a strong customer focus. 

 The "Montana.gov" site provides resources, tools, and e-Gov access to services for the citizens of Montana, state & local government employees, businesses, and out-of-state visitors alike for which DOA SITSD and State leadership are charged to provide secured systems to ensure confidentiality, integrity, and availability of services. 

This InfoSec website provides access to key information and tools to facilitate success with this important responsibility we share for Cyber Security in Montana. Help us better service this site with your feedback and suggestions by contacting SITSD ISSO Risk Management Office at DOASITSDRiskMgt@mt.gov . 

Try this :   Provided by "StaySafeOnline.org"


Navigation - If you experience any difficulty using this site with broken links, can't find what you are looking for, or other technical difficulties please contact our office:

Phone: 444-2571

E-mail: DOASITSDRiskMgt@mt.gov  

Item of Interest:


When you see this shield on one of our Montana web sites, click to access information about security that will help us all enjoy continued success using our information technology systems safely and smartly through security awareness. 

The State of Montana partners with the Multi-State Information Sharing & Analysis Center (MS-ISAC). Click HERE to checkout their site with varied resources from Advisories and Newsletters to National Webcasts, Training & Videos, and Cyber Security Toolkit.

DISCLAIMER: Links, information, tools, and other resources provided through this website have information that may be useful to visitors of this site. The Information System Security Office and the State of Montana do not warrant the accuracy of any information contained in the provided links, tools, or other resources and neither endorses nor intends to promote the advertising of the resources listed herein. The opinions and statements contained in such resources are those of the author(s) and do not necessarily represent the opinions of the State of Montana or its agencies.

If you are interested in adding a link or recommending new material for this web page, please submit an e-mail request with your suggested link or information to the SITSD ISSO Risk Management Office at DOASITSDRiskMgt@mt.gov .


SITSD/ISSO = Working with you to make your site safe!

        State CIO

          Ron Baldwin

"With the threat of cyber attacks growing every day, understanding how each of us can work to protect the State of Montana information assets is a fundamental requirement of everyone who uses a computer. The SITSD Information Systems Security Office has established this website to provide cyber security information for state agencies and staff, Montana businesses, and Montana residents and communities.

The site changes regularly and I encourage you to use it as a reference for staying safe online. SITSD has also teamed up with SANS to provide Securing the Human -  a cyber security training program designed to increase awareness of the need to maintain confidentiality, how to secure data and devices properly, and how to prevent malware infections. The lessons learned in this training also will help you to keep your personal devices safe."


Check out the latest Information Security, Threats, Viruses, and Top Attacking Locations, Visit the: