The IT Law Wiki
Register
Advertisement

Citation[]

Office of Management and Budget, Fiscal Year 2014-2015 Guidance on Improving Federal Information Security and Privacy Management Practices (Oct. 3, 2014) (full-text).

Overview[]

OMB is making updates to streamline agency reporting of information security incidents to the Department of Homeland Security's (DHS's) U.S. Computer Emergency Readiness Team (US-CERT) and to improve US-CERT's ability to respond effectively to information security incidents. Under the updates, losses of personally identifiable information caused by non-electronic means still need to be reported within one hour of a confirmed breach, but they should be reported to the agency privacy office rather than to US-CERT.

Advertisement