- Not enactedThe President has not signed this bill
- The senate has not voted
- The house has not voted
House Committee on Oversight and Government ReformGovernment OperationsHouse Committee on Homeland SecurityIntroducedMarch 22nd, 2010
- house Committees
Bill DetailsOfficial information provided by the Congressional Research Service. Learn more or make a suggestion.
The Congressional Research Service writes summaries for most legislation. These summaries are listed here. Countable will update some legislation with a revised summary, title or other key elements.
Federal Information Security Amendments Act of 2010
To amend chapter 35 of title 44, United States Code, to create the National Office for Cyberspace, to revise requirements relating to Federal information security, and for other purposes.
Federal Information Security Amendments Act of 2010 - Revises provisions of federal law concerning government information security. Establishes: (1) in the Executive Office of the President the National Office for Cyberspace to serve as the principle office for coordinating an assured, reliable, secure, and survivable information infrastructure and related capabilities; and (2) within such Office the Federal Cybersecurity Practice Board, which shall be responsible for developing and periodically updating information security policies and procedures. Requires the Director of such Office to: (1) develop and oversee the implementation of policies, standards, and guidelines on information security; and (2) require agencies to identify and provide protections commensurate with the risk and magnitude of harm resulting from unauthorized access, use, disclosure, disruption, modification, or destruction of information collected by or maintained for an agency or of information systems used by or operated for an agency. Makes the head of each agency responsible for providing appropriate information security protections. Requires: (1) each agency to have an annual independent information security effectiveness evaluation; and (2) the Director of the Office of Management and Budget (OMB), on the basis of proposed standards developed by the National Institute of Standards and Technology (NIST), to promulgate information security standards pertaining to federal information systems. Allows an agency to employ more stringent standards. Requires the Director of the National Office for Cyberspace to: (1) ensure the operation of a central federal information security incident center; and (2) oversee the development and implementation of policies, standards, and guidance to cost effectively enhance agency information security. Prohibits an agency from entering into a contract or interagency agreement for information technology without including requirements to provide effective information security. Provides for vulnerability assessments of major systems.