IT security program

Department of Commerce
The Department of Commerce Information Technology (IT) Security Program ensures that adequate controls are in place to protect the confidentiality, integrity, and availability of non-national security and national security IT systems and the data they process, transmit, and store. To fulfill the Department's requirements under the Federal Information Security Management Act of 2002, the IT Security Program establishes a framework of policies and procedures consistent with government-wide laws and regulations, ensures systems are categorized and assessed for risk of harm, conducts periodic monitoring of control effectiveness, monitors tracking and completion of corrective actions, and trains personnel with IT security responsibilities.

Source

 * Department of Commerce, Office of the Chief Information Officer, "IT Security" (full-text).