CIO Council: Protect your architecture data

The CIO Council yesterday reminded agency CIOs to guard their enterprise architecture information and applications as closely as their core systems.

Energy Department CIO Karen Evans, vice chairwoman of the council, said the memo to CIOs was a pre-emptive step. She said some agencies have been concerned about the integrity of their architectural plans after federal agents raided Ptech Inc. of Quincy, Mass., last month.

Ptech provides enterprise architecture modeling software to the Air Force, Energy and the FBI, among other agencies. Although the vendor was cleared of wrongdoing and there were no problems with its software, the situation made “everyone stop and think about how they were securing their EA information,” Evans said

The memo said the Office of Management and Budget expects agencies to discuss how they will secure their enterprise architectures in their next quarterly updates of security action plans and milestones.

The council noted that architecture information should be considered mission-critical, and that agencies should use measures outlined in the Government Information Security Reform Act, which will evolve into the Federal Information Security Management Act.

FISMA passed as part of the E-Government Act of 2002, signed into law last month.

About the Author

Connect with the GCN staff on Twitter @GCNtech.

Featured

  • Defense
    Soldiers from the Old Guard test the second iteration of the Integrated Visual Augmentation System (IVAS) capability set during an exercise at Fort Belvoir, VA in Fall 2019. Photo by Courtney Bacon

    IVAS and the future of defense acquisition

    The Army’s Integrated Visual Augmentation System has been in the works for years, but the potentially multibillion deal could mark a paradigm shift in how the Defense Department buys and leverages technology.

  • Cybersecurity
    Deputy Secretary of Homeland Security Alejandro Mayorkas  (U.S. Coast Guard photo by Petty Officer 3rd Class Lora Ratliff)

    Mayorkas announces cyber 'sprints' on ransomware, ICS, workforce

    The Homeland Security secretary announced a series of focused efforts to address issues around ransomware, critical infrastructure and the agency's workforce that will all be launched in the coming weeks.

Stay Connected