{"description":"Documents matching 'security cloud network firewalls protection requirements'","count":151,"total_pages":8,"next_page_url":"https://www.federalregister.gov/api/v1/documents?conditions%5Bterm%5D=security+cloud+network+firewalls+protection+requirements&format=json&page=2","results":[{"title":"Critical Infrastructure Protection Reliability Standard CIP-015-1-Cyber Security-Internal Network Security Monitoring","type":"Rule","abstract":"The Federal Energy Regulatory Commission (Commission) approves proposed Reliability Standard CIP-015-1 (Cyber Security--Internal Network Security Monitoring), which the North American Electric Reliability Corporation (NERC), submitted in response to a Commission directive. In addition, the Commission directs NERC to develop certain modifications to proposed Reliability Standard CIP-015-1 to extend internal network security monitoring to include electronic access control or monitoring systems and physical access control systems outside of the electronic security perimeter. The Commission also provides greater clarity about the term CIP-networked environment as it is used in proposed Reliability Standard CIP-015-1.","document_number":"2025-12309","html_url":"https://www.federalregister.gov/documents/2025/07/02/2025-12309/critical-infrastructure-protection-reliability-standard-cip-015-1-cyber-security-internal-network","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2025-07-02/pdf/2025-12309.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2025-12309.pdf?1751373912","publication_date":"2025-07-02","agencies":[{"raw_name":"DEPARTMENT OF ENERGY","name":"Energy Department","id":136,"url":"https://www.federalregister.gov/agencies/energy-department","json_url":"https://www.federalregister.gov/api/v1/agencies/136","parent_id":null,"slug":"energy-department"},{"raw_name":"Federal Energy Regulatory Commission","name":"Federal Energy Regulatory Commission","id":167,"url":"https://www.federalregister.gov/agencies/federal-energy-regulatory-commission","json_url":"https://www.federalregister.gov/api/v1/agencies/167","parent_id":136,"slug":"federal-energy-regulatory-commission"}],"excerpts":"environment does not cover all of a responsible entity's <span class=\"match\">network</span>. Rather, the scope of CIP-<span class=\"match\">networked</span> environment includes the systems within the electronic <span class=\"match\">security</span> perimeter \n and \n one or more of the following: (1) <span class=\"match\">network</span> segments that are connected to EACMS and PACS outside of the electronic <span class=\"match\">security</span> perimeter; (2) <span class=\"match\">network</span> segments between EACMS and PACS outside of the electronic <span class=\"match\">security</span> perimeter; or (3) <span class=\"match\">network</span> segments that are internal to EACMS and PACS outside of the electronic <span class=\"match\">security</span> perimeter.\n 82 \n \n We determine that the above scope"},{"title":"Notice of Availability of Security Requirements for Restricted Transactions Under Executive Order 14117","type":"Notice","abstract":"CISA is announcing publication of finalized security requirements for restricted transactions pursuant to Executive Order (E.O.) 14117, \"Preventing Access to Americans' Bulk Sensitive Personal Data and United States Government-Related Data by Countries of Concern.\" In October 2024, CISA published proposed security requirements for restricted transactions which would apply to classes of restricted transactions identified in regulations issued by the Department of Justice (DOJ). CISA solicited comment on those proposed security requirements and considered that public feedback when developing the final security requirements. This notice also provides CISA's responses to the public comments received.","document_number":"2024-31479","html_url":"https://www.federalregister.gov/documents/2025/01/08/2024-31479/notice-of-availability-of-security-requirements-for-restricted-transactions-under-executive-order","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2025-01-08/pdf/2024-31479.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2024-31479.pdf?1735911917","publication_date":"2025-01-08","agencies":[{"raw_name":"DEPARTMENT OF HOMELAND SECURITY","name":"Homeland Security Department","id":227,"url":"https://www.federalregister.gov/agencies/homeland-security-department","json_url":"https://www.federalregister.gov/api/v1/agencies/227","parent_id":null,"slug":"homeland-security-department"}],"excerpts":"as the proposed <span class=\"match\">security</span> <span class=\"match\">requirements</span>. \n See \n 89 FR 86116.\n \n \n \n 3 \n  The proposed <span class=\"match\">security</span> <span class=\"match\">requirements</span> were posted at \n https://www.cisa.gov/resources-tools/resources/proposed-<span class=\"match\">security</span>-<span class=\"match\">requirements</span>-restricted-transactions. \n \n \n \n The DOJ NPRM proposed to require, consistent with E.O. 14117, that United States persons engaging in restricted transactions must comply with the final <span class=\"match\">security</span> <span class=\"match\">requirements</span> by incorporating the standards by reference. \n See \n proposed 28 CFR 202.248, 202.401, 202.402.\n \n The <span class=\"match\">security</span> <span class=\"match\">requirements</span> were divided into"},{"title":"HIPAA Security Rule To Strengthen the Cybersecurity of Electronic Protected Health Information","type":"Proposed Rule","abstract":"The Department of Health and Human Services (HHS or \"Department\") is issuing this notice of proposed rulemaking (NPRM) to solicit comment on its proposal to modify the Security Standards for the Protection of Electronic Protected Health Information (\"Security Rule\") under the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and the Health Information Technology for Economic and Clinical Health Act of 2009 (HITECH Act). The proposed modifications would revise existing standards to better protect the confidentiality, integrity, and availability of electronic protected health information (ePHI). The proposals in this NPRM would increase the cybersecurity for ePHI by revising the Security Rule to address: changes in the environment in which health care is provided; significant increases in breaches and cyberattacks; common deficiencies the Office for Civil Rights has observed in investigations into Security Rule compliance by covered entities and their business associates (collectively, \"regulated entities\"); other cybersecurity guidelines, best practices, methodologies, procedures, and processes; and court decisions that affect enforcement of the Security Rule.","document_number":"2024-30983","html_url":"https://www.federalregister.gov/documents/2025/01/06/2024-30983/hipaa-security-rule-to-strengthen-the-cybersecurity-of-electronic-protected-health-information","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2025-01-06/pdf/2024-30983.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2024-30983.pdf?1735334119","publication_date":"2025-01-06","agencies":[{"raw_name":"DEPARTMENT OF HEALTH AND HUMAN SERVICES","name":"Health and Human Services Department","id":221,"url":"https://www.federalregister.gov/agencies/health-and-human-services-department","json_url":"https://www.federalregister.gov/api/v1/agencies/221","parent_id":null,"slug":"health-and-human-services-department"},{"raw_name":"Office of the Secretary"}],"excerpts":"Memorandum on National <span class=\"match\">Security</span> Memorandum on Critical Infrastructure <span class=\"match\">Security</span> and Resilience, National <span class=\"match\">Security</span> Memorandum/NSM-22, The White House (Apr. 30, 2024), \n https://www.whitehouse.gov/briefing-room/presidential-actions/2024/04/30/national-<span class=\"match\">security</span>-memorandum-on-critical-infrastructure-<span class=\"match\">security</span>-and-resilience/ \n (“Critical infrastructure comprises the physical and virtual assets and systems so vital to the Nation that their incapacity or destruction would have a debilitating impact on national <span class=\"match\">security</span>, national economic <span class=\"match\">security</span>, or national public"},{"title":"Privacy Act of 1974; System of Records","type":"Notice","abstract":"Pursuant to the provisions of the Privacy Act of 1974, as amended, the Department of Housing and Urban Development (HUD), Office of Chief Information Officer (OCIO) and Infrastructure and Operations (IOO) is issuing a public notice of its intent to establish a Privacy Act System of Records Notice (SORN) titled \"ServiceNow (SerNow).\" ServiceNow (SerNow) includes core components and related modules that work together to support key HUD operations. It facilitates helpdesk operations, Information Technology (IT) management, software and asset tracking, facilities management operations, Human Resources activities, and limited financial planning functions. HUD utilizes multiple ServiceNow instances, with distinct environments tailored to specific purposes such as development, testing, and production, each of which maintains detailed information regarding users and network objects. This structure makes it easier for employees to efficiently locate and utilize required resources while ensuring system integrity across operations. ServiceNow collects and processes information from users either through submitted forms, internal workflows, or integrated systems via structured data repositories. The information maintained within ServiceNow is sourced from HUD systems such as Active Directory (AD)/LAN File Server (LFS), and Digital Identity and Access Management System (DIAMS).","document_number":"2026-06607","html_url":"https://www.federalregister.gov/documents/2026/04/06/2026-06607/privacy-act-of-1974-system-of-records","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2026-04-06/pdf/2026-06607.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2026-06607.pdf?1775220312","publication_date":"2026-04-06","agencies":[{"raw_name":"DEPARTMENT OF HOUSING AND URBAN DEVELOPMENT","name":"Housing and Urban Development Department","id":228,"url":"https://www.federalregister.gov/agencies/housing-and-urban-development-department","json_url":"https://www.federalregister.gov/api/v1/agencies/228","parent_id":null,"slug":"housing-and-urban-development-department"}],"excerpts":"official duties.\n \n \n For Electronic Records (<span class=\"match\">cloud</span>-based): \n Comprehensive electronic records are secured and maintained on a <span class=\"match\">cloud</span>-based software server and operating system that resides in the Federal Risk and Authorization Management Program (FedRAMP) and Federal Information <span class=\"match\">Security</span> Management Act (FISMA) Moderate dedicated hosting environment. All data in the <span class=\"match\">cloud</span>-based server is <span class=\"match\">firewalled</span> and encrypted at rest and in transit. PII is secured in cipher locks, combination locks, key cards, <span class=\"match\">security</span> guards, closed circuit TV \n \n and safes. Identification"},{"title":"Facilitating Implementation of Next Generation 911 Services (NG911); Improving 911 Reliability","type":"Rule","abstract":"In this document, the Federal Communications Commission (the FCC or Commission) adopts rules to ensure that emerging Next Generation 911 (NG911) networks are reliable and interoperable. NG911 is replacing legacy 911 technology across the country with internet Protocol (IP)- based infrastructure that will support new 911 capabilities, including text, video, and data. However, for NG911 to be fully effective, NG911 networks must be designed to safeguard the reliability of critical components and support the interoperability needed to seamlessly transfer 911 calls and data from one network to another. The rules require entities essential to delivering emergency calls in the NG911 environment to implement common sense measures to safeguard the reliability of NG911 networks and reduce the risk of 911 outages, and require certain entities to report on their support for NG911 interoperability. The rules also eliminate unnecessary and burdensome legacy rules to increase flexibility and encourage technical innovation to make NG911 services reliable, interoperable, and accessible to all.","document_number":"2026-13998","html_url":"https://www.federalregister.gov/documents/2026/07/10/2026-13998/facilitating-implementation-of-next-generation-911-services-ng911-improving-911-reliability","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2026-07-10/pdf/2026-13998.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2026-13998.pdf?1783601118","publication_date":"2026-07-10","agencies":[{"raw_name":"FEDERAL COMMUNICATIONS COMMISSION","name":"Federal Communications Commission","id":161,"url":"https://www.federalregister.gov/agencies/federal-communications-commission","json_url":"https://www.federalregister.gov/api/v1/agencies/161","parent_id":null,"slug":"federal-communications-commission"}],"excerpts":"major <span class=\"match\">network</span> outages, PSHSB identified increased monitoring of 911 <span class=\"match\">network</span> components and faster failovers to redundant <span class=\"match\">network</span> equipment as key mitigating measures.\n 57 \n \n And in 2020, following another series of major communications outages affecting 911, the Bureau encouraged CSPs to follow industry best practices for <span class=\"match\">network</span> reliability including circuit diversity and auditing, rerouting capabilities, and active <span class=\"match\">network</span> monitoring.\n 58 \n \n \n \n \n 56 \n  \n Derecho Report \n at 44.\n \n \n \n \n 57 \n  See \n Public Safety and Homeland <span class=\"match\">Security</span> Bureau"},{"title":"Privacy Act of 1974; System of Records","type":"Notice","abstract":"In accordance with the Privacy Act of 1974, as amended, the FDIC proposes to establish a new FDIC system of records titled FDIC- 042, \"Insider Risk Program Records.\" This system of records enables FDIC to implement the requirements of Executive Order 13587, Structural Reforms to Improve the Security of Classified Networks and the Responsible Sharing and Safeguarding of Classified Information, and the National Insider Threat Policy and Minimum Standards for Executive Branch Insider Threat Programs. The system supports the operation of the FDIC Insider Risk Program, which seeks to deter, detect, and mitigate risk to FDIC personnel, facilities, assets, resources and information from insiders.","document_number":"2024-19510","html_url":"https://www.federalregister.gov/documents/2024/08/30/2024-19510/privacy-act-of-1974-system-of-records","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2024-08-30/pdf/2024-19510.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2024-19510.pdf?1724935524","publication_date":"2024-08-30","agencies":[{"raw_name":"FEDERAL DEPOSIT INSURANCE CORPORATION","name":"Federal Deposit Insurance Corporation","id":164,"url":"https://www.federalregister.gov/agencies/federal-deposit-insurance-corporation","json_url":"https://www.federalregister.gov/api/v1/agencies/164","parent_id":null,"slug":"federal-deposit-insurance-corporation"}],"excerpts":"personnel history (\n e.g., \n disciplinary or performance records), reports of investigations or inquiries regarding <span class=\"match\">security</span> violations or misconduct.\n \n \n <span class=\"match\">Security</span>-related information, \n such as data and forms gathered and compiled for personnel <span class=\"match\">security</span>, <span class=\"match\">security</span> incidents, visitor <span class=\"match\">security</span> screening, or <span class=\"match\">security</span> clearance purposes, including background investigative reports and supporting documentation; current and former <span class=\"match\">security</span> clearance status(es); raw reporting and finished intelligence products pertaining to adversarial risks or threats;"},{"title":"Review of Submarine Cable Landing License Rules and Procedures To Assess Evolving National Security, Law Enforcement, Foreign Policy, and Trade Policy Risks; Schedule of Application Fees","type":"Proposed Rule","abstract":"The Federal Communications Commission (\"FCC\" or \"Commission\") takes another important step to protect the Nation's submarine cable infrastructure from threats in an evolving national security and law enforcement landscape by undertaking the first major comprehensive review of the Commission's submarine cable rules since 2001. This review seeks to develop forward-looking rules to better protect submarine cables, identify and mitigate harms affecting national security and law enforcement, and facilitate the deployment of submarine cables and capacity to the market. Among other things, the Commission proposes to adopt a three-year periodic reporting requirement for submarine cable landing licenses; in the alternative, the Commission seeks comment on shortening the current 25-year submarine cable license term or adopting a shorter license term in combination with periodic reporting. The Commission also proposes or seeks comment on codifying the Commission's legal jurisdiction and other legal requirements in its rules to provide regulatory certainty to submarine cable owners and operators. Additionally, the Commission proposes and seeks comment on appropriate applicant and application requirements to account for the evolution of technologies and facilities and changes in the national security landscape over the last two decades and to ensure the Commission has targeted and granular information regarding the ownership, control, use of a submarine cable system, and other things, which are critical to the Commission's review to assess potential national security risks and other important public interest factors. Further, the Commission seeks comment on improving the quality of the circuit capacity data and facilitating the sharing of such information with other Federal agencies. Through these proposals, the Commission seeks to ensure that the Commission is exercising appropriate oversight of submarine cables to safeguard U.S. communications networks.","document_number":"2025-03718","html_url":"https://www.federalregister.gov/documents/2025/03/13/2025-03718/review-of-submarine-cable-landing-license-rules-and-procedures-to-assess-evolving-national-security","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2025-03-13/pdf/2025-03718.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2025-03718.pdf?1741783507","publication_date":"2025-03-13","agencies":[{"raw_name":"FEDERAL COMMUNICATIONS COMMISSION","name":"Federal Communications Commission","id":161,"url":"https://www.federalregister.gov/agencies/federal-communications-commission","json_url":"https://www.federalregister.gov/api/v1/agencies/161","parent_id":null,"slug":"federal-communications-commission"}],"excerpts":"FOIA.\n \n \n 6. Regulatory Compliance Certifications \n \n 85. Given concerns about ensuring the <span class=\"match\">security</span> and integrity of this critical infrastructure, the Commission proposes new certifications to protect against national <span class=\"match\">security</span>, law enforcement, and other risks. The Commission tentatively \n \n concludes that such <span class=\"match\">requirements</span> would help mitigate national <span class=\"match\">security</span>, economic <span class=\"match\">security</span>, law enforcement, and other concerns associated with threats to the <span class=\"match\">security</span> of submarine cable infrastructure. The Commission also expects that requiring applicants to"},{"title":"Privacy Act of 1974; System of Records","type":"Notice","abstract":"As required by the Privacy Act of 1974 and the Office of Management and Budget (OMB) Circulars A-108 and A-130, the Department of Energy (DOE or the Department) is publishing notice of a modification to an existing Privacy Act System of Records. DOE proposes to amend system of records DOE-41 Legal Files (Claims, Litigation, Criminal Violations, Patents, and Others). The system is used to settle claims, prepare for litigation, and resolve matters in which the agency is involved or has an interest in. This System of Records Notice (SORN) is being modified to align with new formatting requirements, published by OMB, and to ensure appropriate Privacy Act coverage of business processes and Privacy Act information.","document_number":"2026-06994","html_url":"https://www.federalregister.gov/documents/2026/04/10/2026-06994/privacy-act-of-1974-system-of-records","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2026-04-10/pdf/2026-06994.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2026-06994.pdf?1775738718","publication_date":"2026-04-10","agencies":[{"raw_name":"DEPARTMENT OF ENERGY","name":"Energy Department","id":136,"url":"https://www.federalregister.gov/agencies/energy-department","json_url":"https://www.federalregister.gov/api/v1/agencies/136","parent_id":null,"slug":"energy-department"}],"excerpts":"either two-factor authentication or password <span class=\"match\">protection</span>. The system requires passwords to be complex and to be changed frequently. Users accessing system records undergo frequent training in Privacy Act and information <span class=\"match\">security</span> <span class=\"match\">requirements</span>. <span class=\"match\">Security</span> and privacy controls are reviewed on an ongoing basis.\n \n \n • \n Technical: \n Computerized records systems are safeguarded on Departmental <span class=\"match\">networks</span> configured for role-based access based on job responsibilities and organizational affiliation. Privacy and <span class=\"match\">security</span> controls are in place for this system and"},{"title":"USAID Acquisition Regulation (AIDAR): Security and Information Technology Requirements","type":"Rule","abstract":"This final rule amends the U.S. Agency for International Development (USAID) Acquisition Regulation (AIDAR) to incorporate a revised definition of \"information technology\" (IT) and new contract clauses relating to information security, cybersecurity, and IT resources. The purpose of these revisions is to provide increased oversight of contractor acquisition and use of IT resources.","document_number":"2024-05748","html_url":"https://www.federalregister.gov/documents/2024/03/20/2024-05748/usaid-acquisition-regulation-aidar-security-and-information-technology-requirements","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2024-03-20/pdf/2024-05748.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2024-05748.pdf?1710852314","publication_date":"2024-03-20","agencies":[{"raw_name":"Agency for International Development","name":"Agency for International Development","id":6,"url":"https://www.federalregister.gov/agencies/agency-for-international-development","json_url":"https://www.federalregister.gov/api/v1/agencies/6","parent_id":null,"slug":"agency-for-international-development"}],"excerpts":"must minimize and mitigate <span class=\"match\">security</span> risks, promote the integrity and availability of website information, and use state-of-the-art: system/software management; engineering and development; event logging; and secure-coding practices that are equal to or better than USAID standards and information <span class=\"match\">security</span> best practices. Rigorous <span class=\"match\">security</span> safeguards, including but not limited to, virus <span class=\"match\">protection</span>; <span class=\"match\">network</span> intrusion detection and prevention programs; and vulnerability management systems must be implemented and critical <span class=\"match\">security</span> issues must be resolved"},{"title":"Facilitating Implementation of Next Generation 911 Services (NG911); Improving 911 Reliability","type":"Proposed Rule","abstract":"In this document, the Federal Communications Commission (the FCC or Commission) proposes rules that would help ensure that emerging Next Generation 911 (NG911) networks are reliable and interoperable. NG911 is replacing legacy 911 technology across the country with Internet Protocol (IP)-based infrastructure that will support new 911 capabilities, including text, video, and data. However, for NG911 to be fully effective, NG911 networks must safeguard the reliability of critical components and support the interoperability needed to seamlessly transfer 911 calls and data from one network to another. When the Commission first adopted 911 reliability rules in 2013, the transition to NG911 was in its very early stages. Since then, many state and local 911 Authorities have made significant progress in deploying NG911 capabilities in their jurisdictions. This Further Notice of Proposed Rulemaking (FNPRM) is the next step in fulfilling the Commission's commitment to facilitate the NG911 transition and to ensure that the transition does not inadvertently create vulnerabilities in the nation's critical public safety networks. The FNPRM proposes to update the definition of \"covered 911 service provider\" in the Commission's existing 911 reliability rules to ensure that the rules apply to service providers that control or operate critical pathways and components in NG911 networks. It also proposes to update the reliability standards for providers of critical NG911 functions to ensure the reliable delivery of 911 traffic to NG911 delivery points, and proposes to establish NG911 interoperability requirements for interstate transfer of 911 traffic between Emergency Services IP Networks (ESInets). In addition, the FNPRM proposes to modify the certification and oversight mechanisms in the current 911 reliability rules to improve reliability and interoperability in NG911 systems while minimizing burdens on service providers, and proposes to empower state and local 911 Authorities to obtain reliability and interoperability certifications directly from covered 911 service providers.","document_number":"2025-09279","html_url":"https://www.federalregister.gov/documents/2025/06/04/2025-09279/facilitating-implementation-of-next-generation-911-services-ng911-improving-911-reliability","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2025-06-04/pdf/2025-09279.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2025-09279.pdf?1748954707","publication_date":"2025-06-04","agencies":[{"raw_name":"FEDERAL COMMUNICATIONS COMMISSION","name":"Federal Communications Commission","id":161,"url":"https://www.federalregister.gov/agencies/federal-communications-commission","json_url":"https://www.federalregister.gov/api/v1/agencies/161","parent_id":null,"slug":"federal-communications-commission"}],"excerpts":"disseminated lessons learned from major <span class=\"match\">network</span> outages and reminded and encouraged communications service providers to review industry best practices to ensure <span class=\"match\">network</span> reliability.\n 20 \n \n The Bureau created a new <span class=\"match\">network</span> reliability page (\n http://www.fcc.gov/<span class=\"match\">network</span>-reliability-resources \n ) to help ensure that <span class=\"match\">network</span> providers, public safety entities, and the general public can readily access the Bureau's work in promoting industry best practices.\n 21 \n \n Based on the Bureau's analysis of several major <span class=\"match\">network</span> outages that affected subscribers,"},{"title":"Privacy Act of 1974; System of Records","type":"Notice","abstract":"As required by the Privacy Act of 1974 and the Office of Management and Budget (OMB) Circulars A-108 and A-130, the Department of Energy (DOE or the Department) is publishing notice of a newly established Privacy Act system of records. DOE proposes to establish System of Records DOE-85 Research, Technology, and Economic Security (RTES) Due Diligence Review Records as part of the Department's implementation of Government-wide and Departmental RTES requirements included in National Security Presidential Memorandum-33 (NSPM-33), the CHIPS and Science Act, and other laws or Executive orders related to research security. Records in this system are maintained and used by the Department to track and monitor research, technology, and economic security risk assessments associated with the projects for which the Department receives applications, proposals, and submissions for research, development, deployment, demonstrations, commercialization, and scientific activities, and Departmental laboratories and facilities performing such activities, as well as certain high-risk non-scientific and non-research and development activities and for projects DOE otherwise is or is considering supporting.","document_number":"2024-20376","html_url":"https://www.federalregister.gov/documents/2024/09/10/2024-20376/privacy-act-of-1974-system-of-records","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2024-09-10/pdf/2024-20376.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2024-20376.pdf?1725885933","publication_date":"2024-09-10","agencies":[{"raw_name":"DEPARTMENT OF ENERGY","name":"Energy Department","id":136,"url":"https://www.federalregister.gov/agencies/energy-department","json_url":"https://www.federalregister.gov/api/v1/agencies/136","parent_id":null,"slug":"energy-department"}],"excerpts":"either two-factor authentication or password <span class=\"match\">protection</span>. The system requires passwords to be complex and to be changed frequently. Users accessing system records undergo frequent training in Privacy Act and information <span class=\"match\">security</span> <span class=\"match\">requirements</span>. <span class=\"match\">Security</span> and privacy controls are reviewed on an ongoing basis.\n \n \n • \n Technical: \n Computerized records systems are safeguarded on Departmental <span class=\"match\">networks</span> configured for role-based access based on job responsibilities and organizational affiliation. Privacy and <span class=\"match\">security</span> controls are in place for this system and"},{"title":"Securing the Information and Communications Technology and Services Supply Chain: Unmanned Aircraft Systems","type":"Proposed Rule","abstract":"In this advance notice of proposed rulemaking (ANPRM), the Department of Commerce's Bureau of Industry and Security (BIS) seeks public comment on issues related to transactions involving information and communications technology and services (ICTS) that are designed, developed, manufactured, or supplied by persons owned by, controlled by, or subject to the jurisdiction or direction of foreign adversaries, pursuant to Executive Order (E.O.) 13873, \"Securing the Information and Communications Technology and Services Supply Chain,\" and that are integral to unmanned aircraft systems (UAS). This ANPRM will assist BIS in determining the technologies and market participants that may be appropriate for regulation in order to address undue or unacceptable risks to U.S. national security, including U.S. ICTS supply chains and critical infrastructure, or/and to the security and safety of U.S. persons.","document_number":"2024-30209","html_url":"https://www.federalregister.gov/documents/2025/01/03/2024-30209/securing-the-information-and-communications-technology-and-services-supply-chain-unmanned-aircraft","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2025-01-03/pdf/2024-30209.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2024-30209.pdf?1735825508","publication_date":"2025-01-03","agencies":[{"raw_name":"DEPARTMENT OF COMMERCE","name":"Commerce Department","id":54,"url":"https://www.federalregister.gov/agencies/commerce-department","json_url":"https://www.federalregister.gov/api/v1/agencies/54","parent_id":null,"slug":"commerce-department"},{"raw_name":"Bureau of Industry and Security","name":"Industry and Security Bureau","id":241,"url":"https://www.federalregister.gov/agencies/industry-and-security-bureau","json_url":"https://www.federalregister.gov/api/v1/agencies/241","parent_id":54,"slug":"industry-and-security-bureau"}],"excerpts":"Personal Information <span class=\"match\">Protection</span> Law (PIPL) of 2021, the National <span class=\"match\">Security</span> Law of 2015) that mandate cooperation with China's cybersecurity efforts, intelligence operations, and the <span class=\"match\">protection</span> of national <span class=\"match\">security</span> interests by individuals and entities subject to the jurisdiction of China. These laws require <span class=\"match\">network</span> operators and technology companies to assist public <span class=\"match\">security</span> agencies in safeguarding cybersecurity and providing access to data stored within China's borders (see Department of Homeland <span class=\"match\">Security</span>, \n Data <span class=\"match\">Security</span> Business Advisory \n (July"},{"title":"Schools and Libraries Cybersecurity Pilot Program","type":"Rule","abstract":"In this document, the Federal Communications Commission (Commission or FCC) stablishes the Schools and Libraries Cybersecurity Pilot Program (Pilot or Pilot Program). The Pilot Program will enable the Commission to evaluate the impact that using Universal Service Fund (USF or Fund) support for eligible cybersecurity services and equipment will have on protecting school and library broadband networks and data. In so doing, the Commission seeks to address the apparent needs of schools and libraries for additional support for cybersecurity services and equipment, while evaluating the impact that providing that support would have on the USF.","document_number":"2024-15866","html_url":"https://www.federalregister.gov/documents/2024/07/30/2024-15866/schools-and-libraries-cybersecurity-pilot-program","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2024-07-30/pdf/2024-15866.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2024-15866.pdf?1722257112","publication_date":"2024-07-30","agencies":[{"raw_name":"FEDERAL COMMUNICATIONS COMMISSION","name":"Federal Communications Commission","id":161,"url":"https://www.federalregister.gov/agencies/federal-communications-commission","json_url":"https://www.federalregister.gov/api/v1/agencies/161","parent_id":null,"slug":"federal-communications-commission"}],"excerpts":"services and equipment used in the Pilot. \n \n 95. \n First Performance Goal: Improving the <span class=\"match\">Security</span> and <span class=\"match\">Protection</span> of E-Rate-Funded Broadband <span class=\"match\">Networks</span> and Data. \n First, the Commission adopts a goal for the Pilot Program of improving the <span class=\"match\">security</span> and <span class=\"match\">protection</span> of E-Rate-funded broadband <span class=\"match\">networks</span> and data. Funding made available by the Pilot will help participants acquire cybersecurity services and equipment to improve the <span class=\"match\">security</span> of their broadband <span class=\"match\">networks</span> and data. Commenters generally supported this goal. Cisco, for example, deemed the goal consistent"},{"title":"Privacy Act of 1974; System of Records","type":"Notice","abstract":"As required by the Privacy Act of 1974 and the Office of Management and Budget (OMB) Circulars A-108 and A-130, the Department of Energy (DOE or the Department) is publishing notice of a modification to an existing Privacy Act System of Records. DOE proposes to amend System of Records DOE-25 U.S. Commuter Locator and Parking Space Information System. This System of Records Notice (SORN) is being modified to align with new formatting requirements, published by OMB, and to ensure appropriate Privacy Act coverage of business processes and Privacy Act information.","document_number":"2024-30471","html_url":"https://www.federalregister.gov/documents/2024/12/20/2024-30471/privacy-act-of-1974-system-of-records","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2024-12-20/pdf/2024-30471.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2024-30471.pdf?1734615934","publication_date":"2024-12-20","agencies":[{"raw_name":"DEPARTMENT OF ENERGY","name":"Energy Department","id":136,"url":"https://www.federalregister.gov/agencies/energy-department","json_url":"https://www.federalregister.gov/api/v1/agencies/136","parent_id":null,"slug":"energy-department"}],"excerpts":"either two-factor authentication or password <span class=\"match\">protection</span>. The system requires passwords to be complex and to be changed frequently. Users accessing system records undergo frequent training in Privacy Act and information <span class=\"match\">security</span> <span class=\"match\">requirements</span>. <span class=\"match\">Security</span> and privacy controls are reviewed on an ongoing basis.\n \n \n • \n Technical: \n Computerized records systems are safeguarded on Departmental <span class=\"match\">networks</span> configured for role-based access based on job responsibilities and organizational affiliation. Privacy and <span class=\"match\">security</span> controls are in place for this system and"},{"title":"Privacy Act of 1974; System of Records","type":"Notice","abstract":"As required by the Privacy Act of 1974 and the Office of Management and Budget (OMB) Circulars A-108 and A-130, the Department of Energy (DOE or the Department) is publishing notice of a modification to an existing Privacy Act System of Records. DOE proposes to amend System of Records DOE-9 Members of DOE Advisory Committees. This System of Records Notice (SORN) is being modified to align with new formatting requirements, published by the Office of Management and Budget, and to ensure appropriate Privacy Act coverage of business processes and Privacy Act information.","document_number":"2024-25899","html_url":"https://www.federalregister.gov/documents/2024/11/07/2024-25899/privacy-act-of-1974-system-of-records","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2024-11-07/pdf/2024-25899.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2024-25899.pdf?1730900739","publication_date":"2024-11-07","agencies":[{"raw_name":"DEPARTMENT OF ENERGY","name":"Energy Department","id":136,"url":"https://www.federalregister.gov/agencies/energy-department","json_url":"https://www.federalregister.gov/api/v1/agencies/136","parent_id":null,"slug":"energy-department"}],"excerpts":"either two-factor authentication or password <span class=\"match\">protection</span>. The system requires passwords to be complex and to be changed frequently. Users accessing system records undergo frequent training in Privacy Act and information <span class=\"match\">security</span> <span class=\"match\">requirements</span>. <span class=\"match\">Security</span> and privacy controls are reviewed on an ongoing basis.\n \n \n • \n Technical: \n Computerized records systems are safeguarded on Departmental <span class=\"match\">networks</span> configured for role-based access based on job responsibilities and organizational affiliation. Privacy and <span class=\"match\">security</span> controls are in place for this system and"},{"title":"Privacy Act of 1974; System of Records","type":"Notice","abstract":"As required by the Privacy Act of 1974 and the Office of Management and Budget (OMB) Circulars A-108 and A-130, the Department of Energy (DOE or the Department) is publishing notice of a modification to an existing Privacy Act System of Records. DOE proposes to amend System of Records DOE-24 Land Records System. This System of Records Notice (SORN) is being modified to align with new formatting requirements, published by OMB, and to ensure appropriate Privacy Act coverage of business processes and Privacy Act information.","document_number":"2024-30473","html_url":"https://www.federalregister.gov/documents/2024/12/20/2024-30473/privacy-act-of-1974-system-of-records","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2024-12-20/pdf/2024-30473.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2024-30473.pdf?1734615934","publication_date":"2024-12-20","agencies":[{"raw_name":"DEPARTMENT OF ENERGY","name":"Energy Department","id":136,"url":"https://www.federalregister.gov/agencies/energy-department","json_url":"https://www.federalregister.gov/api/v1/agencies/136","parent_id":null,"slug":"energy-department"}],"excerpts":"either two-factor authentication or password <span class=\"match\">protection</span>. The system requires passwords to be complex and to be changed frequently. Users accessing system records undergo frequent training in Privacy Act and information <span class=\"match\">security</span> <span class=\"match\">requirements</span>. <span class=\"match\">Security</span> and privacy controls are reviewed on an ongoing basis.\n \n \n • \n Technical: \n Computerized records systems are safeguarded on Departmental <span class=\"match\">networks</span> configured for role-based access based on job responsibilities and organizational affiliation. Privacy and <span class=\"match\">security</span> controls are in place for this system and"},{"title":"Privacy Act of 1974; System of Records","type":"Notice","abstract":"As required by the Privacy Act of 1974 and the Office of Management and Budget (OMB) Circulars A-108 and A-130, the Department of Energy (DOE or the Department) is publishing notice of a modification to an existing Privacy Act System of Records. DOE proposes to amend System of Records DOE-27 Foreign Travel Management System (FTMS). This System of Records Notice (SORN) is being modified to align with new formatting requirements, published by OMB, and to ensure appropriate Privacy Act coverage of business processes and Privacy Act information.","document_number":"2024-27345","html_url":"https://www.federalregister.gov/documents/2024/11/22/2024-27345/privacy-act-of-1974-system-of-records","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2024-11-22/pdf/2024-27345.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2024-27345.pdf?1732196720","publication_date":"2024-11-22","agencies":[{"raw_name":"DEPARTMENT OF ENERGY","name":"Energy Department","id":136,"url":"https://www.federalregister.gov/agencies/energy-department","json_url":"https://www.federalregister.gov/api/v1/agencies/136","parent_id":null,"slug":"energy-department"}],"excerpts":"either two-factor authentication or password <span class=\"match\">protection</span>. The system requires passwords to be complex and to be changed frequently. Users accessing system records undergo frequent training in Privacy Act and information <span class=\"match\">security</span> <span class=\"match\">requirements</span>. <span class=\"match\">Security</span> and privacy controls are reviewed on an ongoing basis.\n \n \n • \n Technical: \n Computerized records systems are safeguarded on Departmental <span class=\"match\">networks</span> configured for role-based access based on job responsibilities and organizational affiliation. Privacy and <span class=\"match\">security</span> controls are in place for this system and"},{"title":"Privacy Act of 1974; System of Records","type":"Notice","abstract":"As required by the Privacy Act of 1974 and the Office of Management and Budget (OMB) Circulars A-108 and A-130, the Department of Energy (DOE or the Department) is publishing notice of a modification to an existing Privacy Act System of Records. DOE proposes to amend System of Records DOE-31 Firearms Qualifications Records. This System of Records Notice (SORN) is being modified to align with new formatting requirements, published by OMB, and to ensure appropriate Privacy Act coverage of business processes and Privacy Act information.","document_number":"2024-30472","html_url":"https://www.federalregister.gov/documents/2024/12/20/2024-30472/privacy-act-of-1974-system-of-records","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2024-12-20/pdf/2024-30472.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2024-30472.pdf?1734615934","publication_date":"2024-12-20","agencies":[{"raw_name":"DEPARTMENT OF ENERGY","name":"Energy Department","id":136,"url":"https://www.federalregister.gov/agencies/energy-department","json_url":"https://www.federalregister.gov/api/v1/agencies/136","parent_id":null,"slug":"energy-department"}],"excerpts":"either two-factor authentication or password <span class=\"match\">protection</span>. The system requires passwords to be complex and to be changed frequently. Users accessing system records undergo frequent training in Privacy Act and information <span class=\"match\">security</span> <span class=\"match\">requirements</span>. <span class=\"match\">Security</span> and privacy controls are reviewed on an ongoing basis.\n \n \n • \n Technical: \n Computerized records systems are safeguarded on Departmental <span class=\"match\">networks</span> configured for role-based access based on job responsibilities and organizational affiliation. Privacy and <span class=\"match\">security</span> controls are in place for this system and"},{"title":"Privacy Act of 1974; System of Records","type":"Notice","abstract":"As required by the Privacy Act of 1974 and the Office of Management and Budget (OMB) Circulars A-108 and A-130, the Department of Energy (DOE or the Department) is publishing notice of a modification to an existing Privacy Act system of records. DOE proposes to amend System of Records DOE-14 Report of Compensation. This System of Records Notice (SORN) is being modified to align with new formatting requirements, published by OMB, and to ensure appropriate Privacy Act coverage of business processes and Privacy Act information.","document_number":"2024-30470","html_url":"https://www.federalregister.gov/documents/2024/12/20/2024-30470/privacy-act-of-1974-system-of-records","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2024-12-20/pdf/2024-30470.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2024-30470.pdf?1734615934","publication_date":"2024-12-20","agencies":[{"raw_name":"DEPARTMENT OF ENERGY","name":"Energy Department","id":136,"url":"https://www.federalregister.gov/agencies/energy-department","json_url":"https://www.federalregister.gov/api/v1/agencies/136","parent_id":null,"slug":"energy-department"}],"excerpts":"either two-factor authentication or password <span class=\"match\">protection</span>. The system requires passwords to be complex and to be changed frequently. Users accessing system records undergo frequent training in Privacy Act and information <span class=\"match\">security</span> <span class=\"match\">requirements</span>. <span class=\"match\">Security</span> and privacy controls are reviewed on an ongoing basis.\n \n \n • \n Technical: \n Computerized records systems are safeguarded on Departmental <span class=\"match\">networks</span> configured for role-based access based on job responsibilities and organizational affiliation. Privacy and <span class=\"match\">security</span> controls are in place for this system and"},{"title":"Privacy Act of 1974; System of Records","type":"Notice","abstract":"As required by the Privacy Act of 1974 and the Office of Management and Budget (OMB) Circulars A-108 and A-130, the Department of Energy (DOE or the Department) is publishing notice of a modification to an existing Privacy Act System of Records. DOE proposes to amend System of Records DOE-26 Official Travel Records. This System of Records Notice (SORN) is being modified to align with new formatting requirements, published by OMB, and to ensure appropriate Privacy Act coverage of business processes and Privacy Act information.","document_number":"2024-28153","html_url":"https://www.federalregister.gov/documents/2024/12/02/2024-28153/privacy-act-of-1974-system-of-records","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2024-12-02/pdf/2024-28153.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2024-28153.pdf?1732887936","publication_date":"2024-12-02","agencies":[{"raw_name":"DEPARTMENT OF ENERGY","name":"Energy Department","id":136,"url":"https://www.federalregister.gov/agencies/energy-department","json_url":"https://www.federalregister.gov/api/v1/agencies/136","parent_id":null,"slug":"energy-department"}],"excerpts":"either two-factor authentication or password <span class=\"match\">protection</span>. The system requires passwords to be complex and to be changed frequently. Users accessing system records undergo frequent training in Privacy Act and information <span class=\"match\">security</span> <span class=\"match\">requirements</span>. <span class=\"match\">Security</span> and privacy controls are reviewed on an ongoing basis.\n \n \n • \n Technical: \n Computerized records systems are safeguarded on Departmental <span class=\"match\">networks</span> configured for role-based access based on job responsibilities and organizational affiliation. Privacy and <span class=\"match\">security</span> controls are in place for this system and"}]}