|
OMB Circular A-130, titled Management of Federal Information Resources, is one of many Government circulars produced by the United States Federal Government to establish policy for executive branch departments and agencies. Circular A-130 was first issued in December 1985 to meet information resource management requirements that were included in the Paperwork Reduction Act (PRA) of 1980. Specifically, the PRA assigned responsibility to the OMB Director to develop and maintain a comprehensive set of information resources management policies for use across the Federal government, and to promote the application of information technology to improve the use and dissemination of information in the operation of Federal programs.〔(See "Background" section of Circular's Transmittal Memorandum No. 2 for brief historical information) ()〕 The initial release of the Circular provided a policy framework for information resources management (IRM) across the Federal government. Since the time of the Circular's first release in 1985, Congress has enacted several additional laws and OMB issued several guidance documents that related to information technology management in federal agencies. To account for these new laws and guidance, OMB has revised the Circular three times, in 1994,〔(1994 (Transmittal No. 2) )〕 1996,〔(1996 (Transmittal No. 3) )〕 and 2000.〔(2000 (Transmittal No. 4) )〕 A complete rewrite of the Circular to both update and to correct for known deficiencies has been considered since at least 2005,〔("OMB considers A-130 rewrite", FCW March 2005 )〕 but as of October 2014, this rewrite has not yet occurred. As expressed in the US Federal CIO Council's ''Architecture Alignment and Assessment Guide'' (2000), Circular A-130 can be thought of as a "one-stop shopping document for OMB policy and guidance on information technology management".〔(Architecture Alignment and Assessment Guide, p.5 )〕 == Specific Guidance == A-130 includes specific guidelines that require *all federal information systems to have security plans *systems to have formal emergency response capabilities *a single individual to have responsibility for operational security *Federal Management and Fiscal Integrity Act reports to Congress be made in regards to the security of the system *security awareness training be available to all government users, administrators of the system *regular review and improvement upon contingency plans for the system to be done 抄文引用元・出典: フリー百科事典『 ウィキペディア(Wikipedia)』 ■ウィキペディアで「OMB Circular A-130」の詳細全文を読む スポンサード リンク
|