U.S. Code
- Title 1 General Provisions
- Title 2 The Congress
- Title 3 The President
- Title 4 Flag and Seal, Seat Of Government,and the States
- Title 5 Government Organization and Employees
- Appendix to Title 5
- Title 6 Domestic Security
- Title 7 Agriculture
- Title 8 Aliens and Nationality
- Title 9 Arbitration
- Title 10 Armed Forces
- Appendix to Title 10 (Rules of Court of Appeals for the Armed Forces)
- Title 11 Bankruptcy
- Appendix to Title 11
- Title 12 Banks and Banking
- Title 13 Census
- Title 14 Coast Guard
- Title 15 Commerce and Trade
- Title 16 Conservation
- Title 17 Copyrights
- Title 18 Crimes and Criminal Procedure
- Appendix to Title 18
- Title 19 Customs Duties
- Title 20 Education
- Title 21 Food and Drugs
- Title 22 Foreign Relations and Intercourse
- Title 23 Highways
- Title 24 Hospitals and Asylums
- Title 25 Indians
- Title 26 Internal Revenue Code
- Appendix to Title 26
- Title 27 Intoxicating Liquors
- Title 28 Judiciary and Judicial Procedure
- Appendix to Title 28
- Title 29 Labor
- Title 30 Mineral Lands and Mining
- Title 31 Money and Finance
- Title 32 National Guard
- Title 33 Navigation and Navigable Waters
- Title 34 Navy (repealed)
- Title 35 Patents
- Title 36 Patriotic Societies and Observances
- Title 37 Pay and Allowances Of the Uniformed Services
- Title 38 Veterans' Benefits
- Appendix to Title 38 (Rules of Court of Appeals for Veterans Claims()
- Title 39 Postal Service
- Title 40 Public Buildings, Property, and Works
- Title 41 Public Contracts
- Title 42 The Public Health and Welfare
- Title 43 Public Lands
- Title 44 Public Printing and Documents
- Title 45 Railroads
- Title 46 Shipping
- Appendix to Title 46
- Title 47 Telegraphs, Telephones, and Radiotelegraphs
- Title 48 Territories and Insular Possessions
- Title 49 Transportation
- Title 50 War and National Defense
- Appendix to Title 50
§ 3533. Authority and functions of the Director
(a)
The Director shall oversee agency information security policies and practices, by—
(2)
overseeing the implementation of policies, principles, standards, and guidelines on information security;
(3)
requiring agencies, consistent with the standards promulgated under such section
11331 and the requirements of this subchapter, to identify and provide information security protections commensurate with the risk and magnitude of the harm resulting from the unauthorized access, use, disclosure, disruption, modification, or destruction of—
(4)
coordinating the development of standards and guidelines under section 20 of the National Institute of Standards and Technology Act (15 U.S.C. 278g–3) with agencies and offices operating or exercising control of national security systems (including the National Security Agency) to assure, to the maximum extent feasible, that such standards and guidelines are complementary with standards and guidelines developed for national security systems;
(5)
overseeing agency compliance with the requirements of this subchapter, including through any authorized action under section
11303
(b)(5) of title
40, to enforce accountability for compliance with such requirements;
(6)
reviewing at least annually, and approving or disapproving, agency information security programs required under section
3534
(b);
(7)
coordinating information security policies and procedures with related information resources management policies and procedures; and
Tips