Standards for Categorizing, Certifying, and Accrediting an Information System

The Certification and Accreditation process is intended to provide assurance to the managers responsible for an agency's business mission and IT infrastructure that security risk associated with an IT system was evaluated and determined to be at an acceptable level.

These guidelines apply to all agencies of the Executive Branch of the government of the State of Maryland.  Agencies are encouraged to evaluate and accredit each IT system and/or site operated by, or on behalf of, the agencies (including those operated by contractors).

Standards for Categorizing of Information Systems (144KB)
Provides standard procedures for categorizing security levels of information systems

Security Certification and Accreditation Guidelines (189KB)
Details the State IT Security Certification and Accreditation process

IT Security Certi​fication Overview (102KB)
A brief overview of State IT Security and Accreditation


Human Trafficking GET HELP

National Human Trafficking Hotline - 24/7 Confidential

1-888-373-7888 233733 More Information
on human trafficking in Maryland

Customer Service Promise

The State of Maryland pledges to provide constituents, businesses, customers, and stakeholders with friendly and courteous, timely and responsive, accurate and consistent, accessible and convenient, and truthful and transparent services.

Take Our Survey

Help Stop Fraud in State Government

The Maryland General Assembly’s Office of Legislative Audits operates a toll-free fraud hotline to receive allegations of fraud and/or abuse of State government resources. Information reported to the hotline in the past has helped to eliminate certain fraudulent activities and protect State resources.

More Information