10: Streamlining
Evaluate and Streamline Security and Privacy Processes Other Information:
Given the realities of a rapidly changing technology landscape, we must continually evaluate current processes for adopting
new technologies and ensuring they provide security and privacy protections. As part of its ongoing work on securing mobile
devices, applications, and platforms to support wider mobile adoption across the Federal Government, NIST will review existing
standards and guidelines to ensure they are sufficiently flexible to accommodate mobile technology. The Federal CIO Council’s
Information Security and Identity Management Committee will also evaluate opportunities to accelerate the secure adoption
mobile technologies into the federal environment at reduced costs. As good stewards of data security and privacy, the Federal
Government must ensure that there are safeguards to prevent the improper collection, retention, use or disclosure of sensitive
data such as personally identifiable information (PII). These safeguards should be regularly reviewed and updated as technology
use, capability, and architectures advance so they do not unnecessarily stifle the government’s ability to architect for openness
and engage with the public. The Federal CIO Council’s Privacy Committee will work with NIST and the National Archives and
Records Administration (NARA) to develop guidelines for standardized implementation of privacy controls in a digital environment
and educate key agency privacy and legal officials on the latest technology advances and options for addressing digital privacy
(e.g. data collection and individual notice) as well as records retention and security issues.
Indicator(s):
|
