Results for "security"

Guidance

FIPS 199: Standards for Security Categorization of Federal Information and Information Systems

Federal Information Processing Standards publication by the National Institute of Standards and Technology (NIST) that contains standards for the categorization of federal information systems.

Source

National Institute of Standards and Technology

Keywords

data standards, security

Format

PDF (13 pages, 74 KB)

OMB Circular A-123: Management’s Responsibility for Enterprise Risk Management and Internal Control

This Circular defines management’s responsibilities for enterprise risk management (ERM) and internal control. The Circular provides updated implementation guidance to Federal managers to improve accountability and effectiveness of Federal programs as well as mission support operations through implementation of ERM practices and by establishing, maintaining, and assessing internal control effectiveness. Dated July 15, 2016.

Source

Office of Management and Budget

Keywords

data management, security, privacy

Format

PDF (51 pages)

OMB Circular A-123 Appendix A: Management of Reporting and Data Integrity Risk (OMB M-18-16)

Pursuant to OMB Circular No. A-123, agencies are required to manage risk in relation to achievement of reporting objectives. Prior to this update, Appendix A was prescriptive and rigorous in what agencies were required to implement in order to provide reasonable assurances over internal controls over financial reporting (ICOFR). This update balances that rigor with giving agencies the flexibility to determine which control activities are necessary to achieve reasonable assurances over internal controls and processes that support overall data quality contained in agency reports. Updated June 6, 2018.

Source

Office of Management and Budget

Keywords

data management, security

Format

PDF (9 pages, 199 KB)

OMB Circular A-123 Appendix C: Requirements for Payment Integrity Improvement (OMB M-18-20)

The goal of this revised version of OMB Circular A-123 's Appendix C is to transform the improper payment compliance framework to create a more unified, comprehensive, and less burdensome set of requirements. Updated June 26, 2018.

Source

Office of Management and Budget

Keywords

data management, security, privacy

Format

PDF (78 pages)

OMB M-01-17: Confidentiality of Pre-Decisional Budget Information

Emphasizes the need to keep confidential the Executive Branch's internal deliberations regarding the various issues and options that were considered in the process leading to the President's budget decisions. Dated April 25, 2001.

Source

Office of Management and Budget

Keywords

security

Format

PDF (1 page)

OMB M-02-09: Reporting Instructions for the Government Information Security Reform Act and Updated Guidance on Security Plans of Action and Milestones

Provides Reporting Instructions for the Government Information Security Reform Act and Updated Guidance on Security Plans of Action and Milestones. Dated July 2, 2002.

Source

Office of Management and Budget

Keywords

security

Format

PDF (30 pages, 195 KB)

OMB M-06-16: Protection of Sensitive Agency Information

Provides a checklist from the National Institute of Standards and Technology (NIST) for protection of remote information. The intent of implementing the checklist is to compensate for the lack of physical security controls when information is removed from, or accessed from outside the agency location. Dated June 23, 2006.

Source

Office of Management and Budget

Keywords

security

Format

PDF (10 pages, 119 KB)

OMB M-11-06: WikiLeaks – Mishandling of Classified Information

Provides instructions in the wake of disclosure by WikiLeaks that resulted in significant damage to our national security. Dated November 28, 2010.

Source

Office of Management and Budget

Keywords

security

Format

PDF (1 page, 56 KB)

OMB M-11-08: Initial Assessments of Safeguarding and Counterintelligence Postures for Classified National Security Information in Automated Systems

Provides a list of existing requirements and questions department or agency assessment teams should utilize, as an initial step, to assess the current state of information systems security. Dated January 3, 2011.

Source

Office of Management and Budget

Keywords

security

Format

PDF (14 pages, 311 KB)

OMB M-14-03: Enhancing the Security of Federal Information and Information Systems

This memorandum provides agencies with guidance for managing information security risk on a continuous basis and builds upon efforts towards achieving the cybersecurity Cross-Agency Priority goal. Dated November 18, 2013.

Source

Office of Management and Budget

Keywords

security

Format

PDF (15 pages, 869 KB)

OMB M-19-02: Fiscal Year 2018-2019 Guidance on Federal Information Security and Privacy Management Requirements

This memorandum provides agencies with fiscal year (FY) 2019 reporting guidance and deadlines in accordance with the Federal Information Security Modernization Act of 2014 (FISMA). This memorandum also consolidates several government-wide reporting requirements into a single document to eliminate duplicative or burdensome processes. Dated October 25, 2018.

Source

Office of Management and Budget

Keywords

security

Format

PDF (18 pages, 402 KB)

This memorandum provides recommendations for planning and responding to data breaches which could result in identify theft. Dated September 20, 2006.

Source

Office of Management and Budget

Keywords

security

Format

PDF (12 pages, 1903 KB)

See all resources in Guidance >