State of Ohio agencies are required to identify each information system that contains, processes, and transmits state data and information and prepare and implement a plan for the security and privacy of these systems. The objective of system security planning is to improve protection of information technology (IT) resources.  All State of Ohio systems have some level of sensitivity and require protection as part of best management practices. The protection of a system must be documented in a system security plan. This document is the DAS System Security Plan template.