Where to turn for help


Besides the Office of Management and Budget guidance, there are other sourcesof information about the requirements of the Government Information SecurityReform Act.

* The act itself. It's available on the CIO Council Web site (www.cio.gov/docs/NDAA2001.htm),separate from the fiscal 2001 Defense Authorization Act.

* The National Institute of Standards and Technology draft special publication,"Self-Assessment Guide for Information Technology Systems." Available atthe Computer Security Resource Center's Web site (csrc.nist.gov). A finalversion will be available soon but won't differ much from the draft.

* The CIO Council's Information Technology Security Assessment Framework.Also available on the council's site, the framework is what the NIST specialpublication builds on.

* The CIO Council's report "Securing Electronic Government." This publication,also on the council's Web site, takes a more program-oriented view at whatsecurity is necessary for different systems and services

Featured

  • Defense
    DOD photo by Senior Airman Perry Aston  11th Wing Public Affairs

    How DOD's executive exodus could affect tech modernization

    Back-to-back resignations raise concerns about how things will be run without permanent leadership in key areas from policy to tech development.

  • Budget
    cybersecurity (vs148/Shutterstock.com)

    House's DHS funding bill would create public-private cyber center

    The legislation would give $2.25 billion to DHS' cyber wing and set up an integrated cybersecurity center with other agencies, state and local governments and private industry.

Stay Connected

FCW INSIDER

Sign up for our newsletter.

I agree to this site's Privacy Policy.