X hits on this document

62 views

0 shares

0 downloads

0 comments

30 / 30

Other References (Cont.)

OMB Memorandum 99-18, “Privacy Policies on Federal Web Sites.”

 This memorandum directs Departments and Agencies to post clear privacy policies on World Wide Web sites, and provides guidance for doing so.

OMB Memorandum 00-13, “Privacy Policies and Data Collection on Federal Web Sites.”

 The purpose of this memorandum is a reminder that each agency is required by law and policy to establish clear privacy policies for its web activities and to comply with those policies.

General Accounting Office “Federal Information System Control Audit Manual” (FISCAM).

 The FISCAM methodology provides guidance to auditors in evaluating internal controls over the confidentiality, integrity, and availability of data maintained in computer-based information systems.

NIST Special Publication 800-14, “Generally Accepted Principles and Practices for Security Information Technology Systems.”

 This publication guides organizations on the types of controls, objectives, and procedures that comprise an effective security program.

NIST Special Publication 800-18, “Guide for Developing Security Plans for Information Technology Systems.”

 This publication details the specific controls that should be documented in a system security plan.

Document info
Document views62
Page views62
Page last viewedFri Dec 02 23:14:43 UTC 2016
Pages30
Paragraphs305
Words2761

Comments