- FAA Information Security and Privacy Program & Policy
- Date Issued
- December 23, 2016
- Responsible Office
- AIS-1, Information Security and Privacy
- Access Restriction
- FAA Network Only
- Contact Information
This order defines the Federal Aviation Administration’s (FAA) Information Security and Privacy (IS&P) Program and policy, and augments the Department of Transportation’s (DOT) policies and guidance defined in DOT Order 1351.37, the Departmental Cybersecurity Compendium: Supplement to DOT Order 1351.37 Departmental Cybersecurity Policy (as amended), June 2015, Version 4, hereafter referred to as DOT Compendium, Cybersecurity Action Memos (CAMs), and other DOT policy documents with FAA-specific policy, Federal Risk and Authorization Management Program (FedRAMP), and guidance.
This order establishes FAA’s IS&P Program and Policy and assigns organizational and b.management responsibilities to ensure the FAA IS&P Program and policy are implemented consistent with Federal statutes, laws, and regulations about information security management.
This document's content can only be accessed from within the FAA network.The document's Office of Primary Responsibility (OPR) is AIS-1.