Putnam drafting Clinger-Cohen amendment

Rep. Adam Putnam is working on a Clinger-Cohen Act amendment to add cybersecurity and enterprise architecture requirements.

The Florida Republican, chairman of the Government Reform Subcommittee on Technology, Information Policy, Intragovernmental Relations and the Census, wants to make it mandatory for agencies to include cybersecurity efforts and architecture models into their IT oversight and decision-making processes.

'There is a link between IT security and the Federal Enterprise Architecture and how agencies conduct IT oversight,' subcommittee staff director Bob Dix said today. 'We think it is important to refer to the FEA and IT security as explicit parts of IT oversight and management.'

Subcommittee staff members have met with administration and agency officials about the need for possibly amending the 1996 law, and Putnam has received support from committee chairman Rep. Tom Davis (R-Va.), Dix said at a breakfast in Fairfax, Va., sponsored by the National Business Promotions and Conferences Inc. of Herndon, Va.

'We plan to move it pretty quickly after the staff makes recommendations,' Dix said. 'We want Clinger-Cohen to be relevant with what is the current trend in the IT decision-making process.'

The subcommittee also is reviewing the Federal Information Security Management Act to see if there is a need to add an IT oversight and management provision, he said.

Meanwhile, the Corporate Information Security Working Group will submit recommendations to Putnam next Wednesday, March 3, about how the private sector can improve its cybersecurity. The working group has been studying five areas:

  • Setting best practices for private-sector IT security


  • Encouraging companies to adopt the best practices


  • Creating a national IT security education campaign


  • Including IT security in procurement practices


  • Sharing intrusion information and performance metrics.


  • 'From talking to agencies, we've come to learn better IT security is not about money or resources, but commitment and prioritization,' Dix said.

    Featured

    • Records management: Look beyond the NARA mandates

      Pandemic tests electronic records management

      Between the rush enable more virtual collaboration, stalled digitization of archived records and managing records that reside in datasets, records management executives are sorting through new challenges.

    • boy learning at home (Travelpixs/Shutterstock.com)

      Tucson’s community wireless bridges the digital divide

      The city built cell sites at government-owned facilities such as fire departments and libraries that were already connected to Tucson’s existing fiber backbone.

    Stay Connected