1.10 Commonwealth Compliance with Federal Security and Privacy Rules and Regulations

The CIO of Virginia is required to develop policies, standards and guidelines that require that any procurement of information technology made by the Commonwealth's executive, legislative, and judicial branches and independent agencies be made in accordance with federal laws and regulations pertaining to information security and privacy, as defined by § 2.2-2009 of the Code of Virginia. These agencies are required to validate their statutory compliance with this.