By Cheryl Bolen
July 27 — The first revision in 16 years to the government's information management policy requires federal agencies to maintain the privacy and security of the information they collect, the Office of Management and Budget said.
OMB Circular A-130 is the policy document that guides federal agencies in the planning, budgeting, governance, acquisition and management of federal information, supporting infrastructure and services.
Periodically, the OMB revises its circular to reflect changes in law and advances in technology, as well as to ensure consistency with executive orders, presidential directives and other OMB policies.
This revision, scheduled to be published in the July 28 Federal Register, directs federal agencies to handle security and privacy requirements as a crucial component of a comprehensive, strategic and continuous risk-based program, administration officials said.
Analysts have long expressed concern about the threats that cyberattacks pose to information technology systems operated by the federal government and its contractors (97 DER 97, 5/20/15).
In a blog post on the OMB website, senior administration officials said that the way the government manages information technology, security, data governance and privacy has rapidly evolved since Circular A-130 was last updated in 2000.
As the government continues to digitize, agencies must manage data to keep it secure and to allow them to provide the best possible service to the public, the officials said.
The revised circular establishes minimum requirements for federal information security programs and assigns responsibilities for the security of information and systems.
Among other responsibilities, the revisions require agencies to continuously monitor, log and audit user activity to protect against insider threats. It also requires agencies to encrypt moderate and high-impact information at rest and in transit.
The circular requires agencies to ensure terms in contracts are sufficient to protect federal information, implement measures to protect against supply chain threats and provide identity assurance for secure government services.
The circular also outlines some general responsibilities for federal agencies when managing personally identifiable information.
Among the requirements for federal agencies is establishing and maintaining a comprehensive, strategic, agency-wide privacy program and designating senior agency officials for privacy.
The circular also requires agencies to conduct privacy impact assessments and to apply the National Institute of Standards and Technology risk management framework to manage privacy risks.
To contact the reporter on this story: Cheryl Bolen in Washington at firstname.lastname@example.org
To contact the editor responsible for this story: Heather Rothman at email@example.com
Copyright © 2016 The Bureau of National Affairs, Inc. All Rights Reserved.
All Bloomberg BNA treatises are available on standing order, which ensures you will always receive the most current edition of the book or supplement of the title you have ordered from Bloomberg BNA’s book division. As soon as a new supplement or edition is published (usually annually) for a title you’ve previously purchased and requested to be placed on standing order, we’ll ship it to you to review for 30 days without any obligation. During this period, you can either (a) honor the invoice and receive a 5% discount (in addition to any other discounts you may qualify for) off the then-current price of the update, plus shipping and handling or (b) return the book(s), in which case, your invoice will be cancelled upon receipt of the book(s). Call us for a prepaid UPS label for your return. It’s as simple and easy as that. Most importantly, standing orders mean you will never have to worry about the timeliness of the information you’re relying on. And, you may discontinue standing orders at any time by contacting us at 1.800.960.1220 or by sending an email to firstname.lastname@example.org.
Put me on standing order at a 5% discount off list price of all future updates, in addition to any other discounts I may quality for. (Returnable within 30 days.)
Notify me when updates are available (No standing order will be created).
This Bloomberg BNA report is available on standing order, which ensures you will all receive the latest edition. This report is updated annually and we will send you the latest edition once it has been published. By signing up for standing order you will never have to worry about the timeliness of the information you need. And, you may discontinue standing orders at any time by contacting us at 1.800.372.1033, option 5, or by sending us an email to email@example.com.
Put me on standing order
Notify me when new releases are available (no standing order will be created)