Senators Carper, Johnson Highlight Critical Update to Key Federal Cybersecurity Guidance

WASHINGTON – Today, U.S. Senators Tom Carper (D-Del.) and Ron Johnson (R-Wis.), Ranking Member and Chairman of the Senate Homeland Security and Governmental Affairs Committee, highlighted the Office of Management and Budget’s (OMB) release of updated revisions to Circular A-130, which establishes OMB’s official policy and guidance on information technology management and cybersecurity for federal agencies.

In April, Senators Carper and Johnson sent a letter to Director of the Office of Management and Budget Shaun Donovan requesting an update on efforts to complete revised guidance for Circular A-130, which has not been updated since 2000. Updates to Appendix III of Circular A-130 were required by the Federal Information Security Modernization Act (FISMA) of 2014, originally sponsored by Senator Carper and former Senator Tom Coburn (R-Okla.), to better secure cyber networks across the federal government.

“As the threats we face in cyberspace continue to evolve and grow every day, we must remain vigilant in efforts to insulate our networks and stay one step ahead of those wishing to do us harm,” said Ranking Member Carper. “I am pleased that OMB has released updated guidance for federal agencies that better reflects the evolving threats we face today. It is now up to federal agencies to implement this guidance as quickly as possible and ensure their systems are up-to-date. There is still much work to be done to fully implement FISMA and better secure our cyber networks. I look forward to continuing to work with Chairman Johnson, my colleagues in Congress and federal agencies in doing all we can to modernize our information technology systems and cybersecurity processes.”

“As chairman, I have focused on improving the federal government’s cybersecurity, sponsoring bipartisan legislation to strengthen cybersecurity coordination and practices among federal agencies,” said Chairman Johnson. “I am pleased that the administration has answered our call to update its information security policy guidance for federal agencies. As our nation confronts growing cybersecurity threats, it is important that the federal government take necessary steps to secure Americans’ information.”