Government can no longer monopolize state of the art cryptography. It is no longer acceptable to argue that the only information of a compelling national security interest is government information. It is unrealistic to believe that government can produce solutions which keep ahead of today's rapidly changing information technology. ...

The National Industrial Security Program Operating Manual (NISPOM) provides baseline standards for the protection of classified information released or disclosed to industry in connection with classified contracts under the National Industrial Security Program (NISP). Chapter 8 addresses the information system security that must be in place. NISPOM was reissued February ...

The goal of The Federal Information Security Management Act of 2002 (FISMA) is to have federal agencies define and architect the required security mechanisms within IT initiatives that support and enforce security planning, testing, and evaluation. Title III of the act deals with the information security aspect of this process. ...

Ensuring the confidentiality of sensitive information processed by, stored in, and moved through information systems and applications belonging to the Department of Labor (DOL). Examples of sensitive information processed by DOL include: personally identifiable information and other Privacy Act protected records; pre-release economic statistics; information provided ...

The OCIO maintains a computer security incident response capability to address incidents across the department. The DOL Computer Security Incident Response Capability (CSIRC) functions in dual modes - proactive and reactive. The team proactively monitors federal and commercial computer incident response and homeland security groups (FedCIRC, CERT, etc.) to ...

A Federal regulatory clearinghouse, Regulations.gov was officially launched in January 2003 as the first milestone of the Federal E-Government  eRulemaking Initiative . This Web site allows the public to access (or review) rules currently open for comment, read full texts of the accompanying documents, and ...

The Department of Labor (DOL) OCIO is responsible for providing regulatory oversight for information technology (IT) security. This oversight includes the development of department-wide policy, procedures, and guidance for compliance with Federal laws, regulations, and guidelines, and sound security and privacy practices. Additionally, OCIO Security is responsible for reviewing ...

A European Commission advisory group has raised concerns about how Google uses and manages users' search data. A privacy advisory group composed of representatives from all of the European Union countries sent Google a letter expressing concern over the search giant's new privacy policy announced in March. The issue surrounds ...