OPM wants more training in IT security

The Office of Personnel Management wants agencies to make sure employees comply with computer security guidelines and training.

In a rule proposed earlier this month, OPM director Kay Coles James recommended requiring employees to check a National Institute of Standards and Technology site, csrc.nist.gov, for the latest information about IT security and training standards.

The OPM rule would require agencies to identify employees with significant security responsibilities and provide role-specific training; make all employees and contractors who use IT study security awareness materials at least annually; and train executives in security basics as well as policy-level planning.

Agencies also would have to train program managers, CIOs and IT security personnel in security basics, planning, systems management, lifecycle and risk management, and contingency planning.
Comments are due to [email protected] by Oct. 6.

Featured

  • business meeting (Monkey Business Images/Shutterstock.com)

    Civic tech volunteers help states with legacy systems

    As COVID-19 exposed vulnerabilities in state and local government IT systems, the newly formed U.S. Digital Response stepped in to help. Its successes offer insight into existing barriers and the future of the civic tech movement.

  • data analytics (Shutterstock.com)

    More visible data helps drive DOD decision-making

    CDOs in the Defense Department are opening up their data to take advantage of artificial intelligence and machine learning tools that help surface insights and improve decision-making.

Stay Connected