New WH memo outlines telework security guidelines

Agencies must control access to information systems, memo states

A senior Obama administration official is reminding federal agencies that they must comply with security guidelines while implementing the Telework Enhancement Act of 2010.

Jack Lew, Office of Management and Budget director, sent a memo to agency leaders July 15 stating that agencies are responsible under the Federal Information Security Management Act of 2002 (FISMA) to “provide protection for information and information systems commensurate with risk.”

He said that agency CIOs must identify a technical manager to help carry out telework security requirements.

“If not properly implemented, telework may introduce new information security vulnerabilities into agency systems and networks,” Lew wrote. 


Related stories:

Like home-work boundaries? Loosecubes to the rescue.

Agencies can ask teleworkers to work during hurricanes


He also said that agencies must continue to follow Office of Management and Budget policies, National Institute of Standards and Technology standards and guidelines, and the Homeland Security Department’s security reporting requirements.

At a minimum, Lew said agency policies must comply with FISMA requirements and deal with:

  • Controlling access to agency information and information systems.
  • Protecting agency information (including personally identifiable information) and information systems.
  • Limiting introducing vulnerabilities.
  • Protecting information systems not under the control of the agency that are used for teleworking.
  • Safeguarding wireless and other telecommunications capabilities that are used for teleworking. 
  • Preventing inappropriate use of official time or resources that violates subpart G of the Standards of Ethical Conduct for Employees of the Executive Branch by viewing, downloading, or exchanging pornography, including child pornography.

In addition, Lew said telework provides federal employees the ability to continue working during inclement weather, emergencies or situations that might disrupt normal government operations.

“However, telework is only as effective as the technologies used to support it, which is why it is critical for agencies to take immediate action to ensure that their employees are properly equipped,” he wrote.

President Barack Obama signed the Telework Enhancement Act last December. 


 

About the Author

Alyah Khan is a staff writer covering IT policy.

The 2015 Federal 100

Meet 100 women and men who are doing great things in federal IT.

Featured

  • Shutterstock image (by venimo): e-learning concept image, digital content and online webinar icons.

    Can MOOCs make the grade for federal training?

    Massive open online courses can offer specialized IT instruction on a flexible schedule and on the cheap. That may not always mesh with government's preference for structure and certification, however.

  • Shutterstock image (by edel): graduation cap and diploma.

    Cybersecurity: 6 schools with the right stuff

    The federal government craves more cybersecurity professionals. These six schools are helping meet that demand.

  • Rick Holgate

    Holgate to depart ATF

    Former ACT president will take a job with Gartner, follow his spouse to Vienna, Austria.

  • Are VA techies slacking off on Yammer?

    A new IG report cites security and productivity concerns associated with employees' use of the popular online collaboration tool.

  • Shutterstock image: digital fingerprint, cyber crime.

    Exclusive: The OPM breach details you haven't seen

    An official timeline of the Office of Personnel Management breach obtained by FCW pinpoints the hackers’ calibrated extraction of data, and the government's step-by-step response.

  • Stephen Warren

    Deputy CIO Warren exits VA

    The onetime acting CIO at Veterans Affairs will be taking over CIO duties at the Office of the Comptroller of the Currency.

  • Shutterstock image: monitoring factors of healthcare.

    DOD awards massive health records contract

    Leidos, Accenture and Cerner pull off an unexpected win of the multi-billion-dollar Defense Healthcare Management System Modernization contract, beating out the presumptive health-records leader.

  • Sweating the OPM data breach -- Illustration by Dragutin Cvijanovic

    Sweating the stolen data

    Millions of background-check records were compromised, OPM now says. Here's the jaw-dropping range of personal data that was exposed.

  • FCW magazine

    Let's talk about Alliant 2

    The General Services Administration is going to great lengths to gather feedback on its IT services GWAC. Will it make for a better acquisition vehicle?

Reader comments

Fri, Jul 29, 2011 Mark

The funny thing is that this has the opposite effect from the intended result. Agencies will now start to pull back from telework with the excuse that they have to harden their environments prior to allowing the telework option to expand. The end result is an increased cost to the government over the long-run due to the ever increasing price of office space, parking space and general facility maintenance. This could have been handled much better to spur growth as opposed to killing it.

Please post your comments here. Comments are moderated, so they may not appear immediately after submitting. We will not post comments that we consider abusive or off-topic.

Please type the letters/numbers you see above