National Oceanic and Atmospheric Administration, United States Department of Commerce


Policies, Regulations and Laws



Office of Management and Budget Regulations

Image Denoting External Link Circular No. A-130, Management of Federal Information Resources
BulletAppendix III to Circular A-130, "Security of Federal Automated Information Resources"
BulletSynopsis of the A-130, Appendix III
Image Denoting External Link Other OMB Circulars


Department of Commerce Policies

NOAA - Department of Commerce Intranet Proxy:
The Department of Commerce IT Security Policies are located on a non-NOAA network inaccessible from off NOAA sites. NOAA has implemented a web proxy to allow NOAA users access to Department intranet based documentation using NEMS authentication at:

Department of Commerce Connection Portal IT Security Documentation

The portal link will require you to logon to the portal with a Department of Commerce e-mail address using a registered account. The portal logon server will require your Department registered authentication, your NOAA e-mail address with the part and an enrolled password, to proceed to the linked document.

Image Denoting External Link CITR-022 DOC Internet Use Policy
Image Denoting External Link CITR-021 DOC Standard on Password Management PDF File
Image Denoting External LinkDOC Breach Response Plan, version 3 PDF File
BulletDOC Procurement Memo 2003-09 PDF File- Contract Requirements for IT Security
    BulletSecurity Clauses - CAR1352.239-73 PDF File & CAR1352.239-74 PDF File


Executive Orders

Image Denoting External Link Executive Order 13231 February 28, 2003, Critical Infrastructure Protection in the Information Age
Image Denoting External Link Executive Order 13130 of July 14, 1999 - National Infrastructure Assurance Council
Image Denoting External Link Executive Order 13111 of January 12, 1999 - Technology uses to improve training opportunities for employees
Image Denoting External Link Executive Order 13103 of September 30, 1998 - Computer Software Piracy
Image Denoting External Link Executive Order 13011 of July 16, 1996 - Chief Information Officers Council
Image Denoting External Link Executive Order 13010 of July 15, 1996 - Critical Information Protection 
Image Denoting External Link Executive Order Search from the National Archives and Records Administration


NIST Publications

Image Denoting External Link NIST Special Publication 800-18 Guide for Developing Security Plans for Information Technology Systems, December 1998

NIST SP 800-30 - Risk Management Guide for IT Systems

NIST SP 800-53 - Recommended Security Controls for Federal Information Systems
NIST SP 800-60 - Guide for Mapping Types of Information and Information Systems to Security Categories (Vol. 1)



Valid XHTML 1.0 Strict
Document last modified Wednesday, 13-Feb-2019 22:57:27 UTC