Critical Infrastructure Protection: OMB Leadership Needed to Strengthen Agency Planning Efforts to Protect Federal Cyber Assets
Abstract
Because the nations critical infrastructure relies on information technology systems and data, the security of those assets is critical to ensuring national security and public safety. In 2003, the President directed federal agencies to (1) develop plans for the protection of their computer-related (cyber) critical infrastructure assets and (2) submit them for approval to the Office of Management and Budget (OMB) by July 31, 2004. To help agencies do this, OMB issued guidance with 19 criteria deemed essential for effective cyber critical infrastructure protection planning that were required to be included in the plans. GAO was asked to determine (1) the extent to which agencies developed their plans and whether they submitted them to OMB by the deadline and (2) whether the plans met criteria in OMBs guidance. To do this, GAO reviewed plans from 24 agencies, many of which own and operate key government cyber and other critical infrastructure; reviewed OMB documentation; interviewed officials; and compared submitted plans to relevant criteria.
Document Details
- Document Type
- Technical Report
- Publication Date
- Oct 01, 2009
- Accession Number
- AD1179289
Entities
People
- Barbarol J. James
- David A. Powner
- Gary N. Mountjoy
- Kenneth A. Johnson
- Kush K. Malhotra
- Lee A. Mccracken
- Michael W. Gilmore
- Nabajyoti Barkakati
- Neil J. Doherty
- Scott F. Borre
Organizations
- United States Government Accountability Office