OMB Offers Guidance on Cybersecurity Executive Order

    Jun 13, 2017

    Fedweek.com reports that the Office of Management and Budget (OMB) has provided guidance to agencies on how to carry out the recent executive order on government cybersecurity, emphasizing the “increasing interconnectedness of federal information and information systems.”

    Memo M-17-25 states that “agency heads are required to manage risk commensurate with the magnitude of harm that would result from unauthorized access, use, disclosure, disruption, modification, or destruction of a federal information system or federal information.”

    Agencies are required to produce a risk management report to OMB and the Department of Homeland Security within 90 days.

    The reports should include, but are not limited to, strategic, market, cyber, legal, reputational, political, and a broad range of operational risks such as information security, human capital, business continuity, and related risks, the memo says.

    The Washington Policy Brief is an online advisory that contains brief summaries of recent legislative and regulatory issues that may affect the records and information management profession. Further information about the issue is accessed by clicking on the link provided at the end of each summary.


    Want to sign up to receive an e-mail version of the Washington Policy Brief? It's free! Just tell us a little about yourself and you'll receive a monthly dose of the latest in legislation, regulation, and more.



    © 2017, ARMA International