Common use of Security Procedures Clause in Contracts

Security Procedures. SSA and VA will comply with the requirements of the Federal Information Security Management Act (FISMA), 44 U.S.C. Chapter 35, Subchapter II, as amended by the Federal Information Security Modernization Act of 2014 (Pub. L. 113-283); related OMB circulars and memoranda, such as Circular A-130, Managing Information as a Strategic Resource (July 28, 2016) and Memorandum M-17-12, Preparing for and Responding to a Breach of Personally Identifiable Information (January 3, 2017); National Institute of Standards and Technology (NIST) directives; and the Federal Acquisition Regulations, including any applicable amendments published after the effective date of this agreement. These laws, directives, and regulations include requirements for safeguarding Federal information systems and personally identifiable information (PII) used in Federal agency business processes, as well as related reporting requirements. Both agencies recognize and will implement the laws, regulations, NIST standards, and OMB directives including those published subsequent to the effective date of this agreement. FISMA requirements apply to all Federal contractors, organizations, or entities that possess or use Federal information, or that operate, use, or have access to Federal information systems on behalf of an agency. Both agencies are responsible for oversight and compliance of their contractors and agents.

Security Procedures. SSA and VA DHS will comply with the requirements of the Federal Information Security Management Act (FISMA), 44 U.S.C. Chapter 35, Subchapter II, as amended by the Federal Information Security Modernization Act of 2014 (Pub. L. 113-283); related OMB circulars and memoranda, such as Circular A-130, Managing Information as a Strategic Resource (July 28, 2016) ), and Memorandum M-17-12, Preparing for and Responding to a Breach of Personally Identifiable Information information (January 3, 2017); National Institute of Standards and Technology (NIST) directives; and the Federal Acquisition Regulations, including any applicable amendments published after the effective date of this agreementAgreement. These laws, directives, and regulations include requirements for safeguarding Federal information systems and personally identifiable information (PII) used in Federal agency business processes, as well as related reporting requirements. Both agencies recognize and will implement the laws, regulations, NIST standards, and OMB directives including those published subsequent to the effective date of this agreementAgreement. FISMA requirements apply to all Federal contractors, organizations, or entities that possess or use Federal information, or that operate, use, or have access to Federal information systems on behalf of an agency. Both agencies are responsible for oversight and compliance of their contractors and agents.

Security Procedures. SSA and VA DoD will comply with the requirements of the Federal Information Security Management Act (FISMA), 44 U.S.C. Chapter 35, Subchapter II, as amended by the Federal Information Security Modernization Act of 2014 (Pub. L. 113-283); related OMB Office of Management and Budget (OMB) circulars and memoranda, such as Circular A-130, Managing Information as a Strategic Resource (July 28, 2016) and Memorandum M-17-12, 12 Preparing for and Responding to a Breach of Personally Identifiable Information (January 3, 2017); National Institute of Standards and Technology (NIST) directives; and the Federal Acquisition Regulations, including any applicable amendments published after the effective date of this agreement. These laws, directives, and regulations include requirements for safeguarding Federal information systems and personally identifiable information (PII) used in Federal agency business processes, as well as related reporting requirements. Both agencies recognize recognize, and will implement implement, the laws, regulations, NIST standards, and OMB directives including those published subsequent to the effective date of this agreement. FISMA requirements apply to all Federal contractors, organizations, or entities that possess or use Federal information, or that operate, use, or have access to Federal information systems on behalf of an agency. Both agencies are responsible for oversight and compliance of their contractors and agents.

Security Procedures. SSA and VA VA/VHA will comply with the requirements of the Federal Information Security Management Act (FISMA), 44 U.S.C. Chapter 35, Subchapter II, as amended by the Federal Information Security Modernization Act of 2014 (Pub. L. 113-283); related OMB circulars and memoranda, such as Circular A-130, Managing Information as a Strategic Resource (July 28, 2016) and Memorandum M-17-12, 12 Preparing for and Responding to a Breach of Personally Identifiable Information (January 3, 2017); National Institute of Standards and Technology (NIST) directives; and the Federal Acquisition Regulations, including any applicable amendments published after the effective date of this agreement. These laws, directives, and regulations include requirements for safeguarding Federal information systems and personally identifiable information (PII) PII used in Federal agency business processes, as well as related reporting requirements. Both agencies recognize recognize, and will implement implement, the laws, regulations, NIST standards, and OMB directives including those published subsequent to the effective date of this agreement. FISMA requirements apply to all Federal contractors, organizations, or entities that possess or use Federal information, or that operate, use, or have access to Federal information systems on behalf of an agency. Both agencies are responsible for oversight and compliance of their contractors and agents.

Security Procedures. SSA and VA will comply with the requirements of the Federal Information Security Management Act (FISMA), 44 U.S.C. Chapter 35, Subchapter II, as amended by the Federal Information Security Modernization Act of 2014 (Pub. L. 113-283); related OMB circulars and memoranda, such as Circular A-130, Managing Information as a Strategic Resource (July 28, 2016) and Memorandum M-17-12, Preparing for and Responding to a Breach of Personally Identifiable Information (January 3, 2017); National Institute of Standards and Technology (NIST) directives; and the Federal Acquisition Regulations, including any applicable amendments published after the effective date of this agreement. These laws, directives, and regulations include requirements for safeguarding Federal information systems and personally identifiable information (PII) used in Federal agency business processes, as well as related reporting requirements. Both agencies recognize recognize, and will implement implement, the laws, regulations, NIST standards, and OMB directives including those published subsequent to the effective date of this agreement. FISMA requirements apply to all Federal contractors, organizations, or entities that possess or use Federal information, or that operate, use, or have access to Federal information systems on behalf of an agency. Both agencies are responsible for oversight and compliance of their contractors and agents.

Security Procedures. SSA and VA RRB will comply with the requirements of the Federal Information Security Management Act (FISMA), 44 U.S.C. Chapter 35, Subchapter II, as amended by the Federal Information Security Modernization Act of 2014 (Pub. L. 113-283); related OMB circulars and memoranda, such as Circular A-130, Managing Information as a Strategic Resource (July 28, 2016) ); and Memorandum M-17-12, 12 Preparing for and Responding to a Breach of Personally Identifiable Information (January 3, 2017); National Institute of Standards and Technology (NIST) directives; and the Federal Acquisition Regulations, including any applicable amendments published after the effective date of this agreement. These laws, directives, and regulations include requirements for safeguarding Federal information systems and personally identifiable information (PII) used in Federal agency business processes, as well as related reporting requirements. Both agencies recognize recognize, and will implement implement, the laws, regulations, NIST standards, and OMB directives including those published subsequent to the effective date of this agreement. FISMA requirements apply to all Federal contractors, organizations, or entities that possess or use Federal information, or that operate, use, or have access to Federal information systems on behalf of an agency. Both agencies are responsible for oversight and compliance of their contractors and agents.

Security Procedures. SSA and VA Fiscal Service will comply with the requirements of the Federal Information Security Management Act (FISMA), 44 U.S.C. Chapter 35, Subchapter II, as amended by the Federal Information Security Modernization Act of 2014 (Pub. L. 113-283); related OMB circulars and memoranda, such as Circular A-130, Managing Information as a Strategic Resource (July 28, 2016) and Memorandum M-17-12, 12 Preparing for and Responding to a Breach of Personally Identifiable Information (January 3, 2017); National Institute of Standards and Technology (NIST) directives; and the Federal Acquisition Regulations, including any applicable amendments published after the effective date of this agreement. These laws, directives, and regulations include requirements for safeguarding Federal information systems and personally identifiable information (PII) used in Federal agency Agency business processes, as well as related reporting requirements. Both agencies recognize and will implement the laws, regulations, NIST standards, and OMB directives including those published subsequent to the effective date of this agreement. FISMA requirements apply to all Federal contractors, organizations, or entities that possess or use Federal information, or that operate, use, or have access to Federal information systems on behalf of an agency. Both agencies are responsible for oversight and compliance of their contractors and agents.

Security Procedures. SSA and VA OPM will comply with the requirements of the Federal Information Security Management Act (FISMA), 44 U.S.C. Chapter 35, Subchapter II, as amended by the Federal Information Security Modernization Act of 2014 (Pub. L. 113-283); related OMB circulars and memoranda, such as Circular A-130, Managing Federal Information as a Strategic Resource (July 28, 2016) ), and Memorandum M-17-12, Preparing for and Responding to a Breach of Personally Identifiable Information (January 3, 2017); National Institute of Standards and Technology (NIST) directives; and the Federal Acquisition Regulations, including any applicable amendments published after the effective date of this agreement. These laws, directives, and regulations include requirements for safeguarding Federal information systems and personally identifiable information (PII) used in Federal agency business processes, as well as related reporting requirements. Both agencies recognize and will implement the laws, regulations, NIST standards, and OMB directives including those published subsequent subsequently to the effective date of this agreement. FISMA requirements apply to all Federal contractors, organizations, or entities that possess or use Federal information, or that operate, use, or have access to Federal information systems on behalf of an agency. Both agencies are responsible for oversight and compliance of their contractors and agents.

Security Procedures. SSA Both DoD and VA will agree to comply with the information security requirements of the Federal Information Security Management Act (FISMA), 44 U.S.C. Chapter 35, Subchapter II, as amended by the Federal Information Security Modernization Act of 2014 (Pub. .L. 113112-283), 44 U.S.C., Chapter 35, Subchapter II (44 U.S.C. § 3551 et seq.); related OMB circulars and memoranda, such as including Circular A-130, Managing Information as a Strategic Resource (July 28, 2016) and Memorandum M-17-12, Preparing for and Responding to a Breach of Personally Identifiable Information (January 3, 2017); applicable National Institute of Standards and Technology (NIST) directives; and the Federal Acquisition Regulations, including any applicable amendments published after the effective date of this agreement. These laws, directives, and regulations include requirements for safeguarding Federal information systems and personally identifiable information (PII) used in Federal agency business processes, as well as related reporting requirements. Both agencies recognize and will implement implement, if mandated, the laws, regulations, NIST standards, and OMB directives including those published subsequent publications to the effective date relating to the subject of this agreement. FISMA requirements apply to all Federal contractors, organizations, or entities sources that possess or use Federal information, or that operate, use, or have access to Federal information systems on behalf of an agency. Both agencies are The recipient agency is responsible for oversight and compliance of their contractors and agents.

Security Procedures. SSA and VA VA/VHA will comply with the requirements of the Federal Information Security Management Act (FISMA), 44 U.S.C. Chapter 35, Subchapter II, as amended by the Federal Information Security Modernization Act of 2014 (Pub. L. 113-283); related OMB circulars and memoranda, such as Circular A-130, Managing Information as a Strategic Resource (July 28, 2016) and Memorandum M-17-12, 12 Preparing for and Responding to a Breach of Personally Identifiable Information (January 3, 2017); National Institute of Standards and Technology (NIST) directives; and the Federal Acquisition Regulations, including any applicable amendments published after the effective date of this agreement. These laws, directives, and regulations include requirements for safeguarding Federal information systems and personally identifiable information (PII) used in Federal agency business processes, as well as related reporting requirements. Both agencies recognize recognize, and will implement implement, the laws, regulations, NIST standards, and OMB directives including those published subsequent to the effective date of this agreement. FISMA requirements apply to all Federal contractors, organizations, or entities that possess or use Federal information, or that operate, use, or have access to Federal information systems on behalf of an agency. Both agencies are responsible for oversight and compliance of their contractors and agents.

Security Procedures. SSA CMS and VA will comply with the requirements of the Federal Information Security Management Act (FISMA), 44 U.S.C. Chapter 35, Subchapter II, as amended by the Federal Information Security Modernization Act of 2014 (Pub. L. 113-283); related OMB circulars and memoranda, such as Circular A-130, Managing Information as a Strategic Resource (July 28, 2016) ), and Memorandum M-17-12, 12 Preparing for and Responding to a Breach of Personally Identifiable Information (January 3, 2017); National Institute of Standards and Technology (NIST) directives; and the Federal Acquisition Regulations, including any applicable amendments published after the effective date of this agreementAgreement. These laws, directives, and regulations include requirements for safeguarding Federal information systems and personally identifiable information (PII) PII used in Federal agency business processes, as well as related reporting requirements. Both agencies recognize and will implement the laws, regulations, NIST standards, and OMB directives including those published subsequent to the effective date of this agreement. FISMA requirements apply to all Federal contractors, organizations, or entities that possess or use Federal information, or that operate, use, or have access to Federal information systems on behalf of an agency. Both agencies are responsible for oversight and compliance of their contractors and agents.

Security Procedures. SSA and VA CMS will comply with the requirements of the Federal Information Security Management Act (FISMA), 44 U.S.C. Chapter 35, Subchapter II, as amended by the Federal Information Security Modernization Act of 2014 (Pub. L. 113-283); related OMB circulars and memoranda, such as Circular A-130, Managing Information as a Strategic Resource (July 28, 2016) and Memorandum M-17-12, 12 Preparing for and Responding to a Breach of Personally Identifiable Information (January 3, 2017); National Institute of Standards and Technology (NIST) directives; and the Federal Acquisition Regulations, including any applicable amendments published after the effective date of this agreement. These laws, directives, and regulations include requirements for safeguarding Federal information systems and personally identifiable information (PII) used in Federal agency business processes, as well as related reporting requirements. Both agencies recognize recognize, and will implement implement, the laws, regulations, NIST standards, and OMB directives including those published subsequent to the effective date of this agreement. FISMA requirements apply to all Federal contractors, organizations, or entities that possess or use Federal information, or that operate, use, or have access to Federal information systems on behalf of an agency. Both agencies are responsible for oversight and compliance of their contractors and agents.

Security Procedures. A. Applicable Standards SSA and VA will comply with the requirements of the Federal Information Security Management Act (FISMA), 44 U.S.C. Chapter 35, Subchapter II, as amended by the Federal Information Security Modernization Act of 2014 (Pub. L. 113-283); related OMB Office of Management and Budget circulars and memoranda, such as Circular A-130, Managing Information as a Strategic Resource (July 28, 2016) and Memorandum M-17M- 17-12, Preparing for and Responding to a Breach of Personally Identifiable Information (January 3, 2017); National Institute of Standards and Technology (NIST) directives; and the Federal Acquisition Regulations, including any applicable amendments published after the effective date of this agreement. These laws, directives, and regulations include requirements for safeguarding Federal information systems and personally identifiable information (PII) used in Federal agency business processes, as well as related reporting requirements. Both agencies recognize SSA recognizes, and will implement implement, the laws, regulations, NIST standards, and OMB directives including those published subsequent to the effective date of this agreement. The State Agency will comply with the requirements of FISMA requirements apply as it applies to all Federal contractorsthe electronic storage and transport of records between agencies, organizations, or entities that possess or use Federal information, or that operate, use, or have access to Federal information systems on behalf and the internal processing of an agency. Both agencies are responsible for oversight and compliance records received by either agency under the terms of their contractors and agentsthis agreement.

Security Procedures. SSA and VA DOL will comply with the requirements of the Federal Information Security Management Act (FISMA), 44 U.S.C. Chapter 35, Subchapter II, as amended by the Federal Information Security Modernization Act of 2014 (Pub. L. 113-283); related OMB Office of Management and Budget (OMB) circulars and memoranda, such as Circular A-130, Managing Information as a Strategic Resource (July 28, 2016) and Memorandum M-17-12, 12 Preparing for and Responding to a Breach of Personally Identifiable Information (January 3, 2017); National Institute of Standards and Technology (NIST) directives; and the Federal Acquisition Regulations, including any applicable amendments published after the effective date of this agreement. These laws, directives, and regulations include requirements for safeguarding Federal information systems and personally identifiable information (PII) used in Federal agency business processes, as well as related reporting requirements. Both agencies recognize recognize, and will implement implement, the laws, regulations, NIST standards, and OMB directives including those published subsequent subsequently to the effective date of this agreement. FISMA requirements apply to all Federal contractors, organizations, or entities that possess or use Federal information, or that operate, use, or have access to Federal information systems on behalf of an agency. Both agencies are responsible for oversight and compliance of their respective contractors and agents.

Security Procedures. SSA and VA will comply with the requirements of the Federal Information Security Management Act (FISMA), 44 U.S.C. Chapter 35, Subchapter II, as amended by the Federal Information Security Modernization Act of 2014 (Pub. L. 113-283); related OMB circulars and memoranda, such as Circular A-130, Managing Information as a Strategic Resource (July 28, 2016) ), and Memorandum M-17-12, Preparing for and Responding to a Breach of Personally Identifiable Information (January 3, 2017); National Institute of Standards and Technology (NIST) directives; and the Federal Acquisition Regulations, including any applicable amendments published after the effective date of this agreement. These laws, directives, and regulations include requirements for safeguarding Federal information systems and personally identifiable information (PII) used in Federal agency business processes, as well as related reporting requirements. Both agencies recognize and will implement the laws, regulations, NIST standards, and OMB directives including those published subsequent to the effective date of this agreement. FISMA requirements apply to all Federal contractors, organizations, or entities that possess or use Federal information, or that operate, use, or have access to Federal information systems on behalf of an agency. Both agencies are responsible for oversight and compliance of their contractors and agents.

Security Procedures. SSA CMS and VA will comply with the requirements of the Federal Information Security Management Act (FISMA), 44 U.S.C. Chapter 35, Subchapter II, as amended by the Federal Information Security Modernization Act of 2014 (Pub. L. 113-283); related OMB circulars and memoranda, such as Circular A-130, Managing Information as a Strategic Resource (July 28, 2016) ), and Memorandum M-17M-06-1216, Preparing for and Responding to a Breach Protection of Personally Identifiable Sensitive Agency Information (January 3June 23, 20172006); National Institute of Standards and Technology (NIST) directives; and the Federal Acquisition Regulations, including any applicable amendments published after the effective date of this agreementAgreement. These laws, directives, and regulations include requirements for safeguarding Federal information systems and personally identifiable information (PII) PII used in Federal agency business processes, as well as related reporting requirements. Both agencies recognize and will implement the laws, regulations, NIST standards, and OMB directives including those published subsequent to the effective date of this agreement. FISMA requirements apply to all Federal contractors, organizations, or entities that possess or use Federal information, or that operate, use, or have access to Federal information systems on behalf of an agency. Both agencies are responsible for oversight and compliance of their contractors and agents.

Security Procedures. SSA and VA ED will comply with the requirements of the Federal Information Security Management Act (FISMA), 44 U.S.C. Chapter 35, Subchapter II, as amended by the Federal Information Security Modernization Act of 2014 (Pub. L. 113-283); related OMB circulars and memoranda, such as Circular A-130, Managing Information as a Strategic Resource (July 28, 2016) and Memorandum M-17-12, Preparing for and Responding to a Breach of Personally Identifiable Information (January 3, 2017); National Institute of Standards and Technology (NIST) directivesdirectives (e.g., NIST Special Publication (SP) 800-53 and NIST SP 800-37); and the Federal Acquisition Regulations, including any applicable amendments published after the effective date of this agreementAgreement. These laws, directives, and regulations include requirements for safeguarding Federal information systems and personally identifiable information (PII) used in Federal agency business processes, as well as related reporting requirements. Both agencies recognize recognize, and will implement implement, the laws, regulations, NIST standards, and OMB directives including those published subsequent to the effective date of this agreementAgreement. FISMA requirements apply to all Federal contractors, organizations, or entities that possess or use Federal information, or that operate, use, or have access to Federal information systems on behalf of an agency. SSA and ED information systems reside behind a Trusted Internet Connection. Both agencies are responsible for oversight and compliance of their contractors and agents.

Security Procedures. SSA and VA OPM will comply with the requirements of the Federal Information Security Management Act (FISMA), 44 U.S.C. Chapter 35, Subchapter II, as amended by the Federal Information Security Modernization Act of 2014 (Pub. L. 113-283); related OMB circulars and memoranda, such as Circular A-130, Managing Federal Information as a Strategic Resource (July 28, 2016) ), and Memorandum M-17-12, Preparing for and Responding to a Breach of Personally Identifiable Information (January 3, 2017); National Institute of Standards and Technology (NIST) directives; and the Federal Acquisition Regulations, including any applicable amendments published after the effective date of this agreement. These laws, directives, and regulations include requirements for safeguarding Federal information systems and personally identifiable information (PII) used in Federal agency business processes, as well as related reporting requirements. Both agencies recognize recognize, and will implement implement, the laws, regulations, NIST standards, and OMB directives including those published subsequent to the effective date of this agreement. FISMA requirements apply to all Federal contractors, organizations, or entities that possess or use Federal federal information, or that operate, use, or have access to Federal information systems on behalf of an agency. Both agencies are responsible for oversight and compliance of their contractors and agents.

Security Procedures. SSA and VA Source Jurisdiction will comply with the requirements of the Federal Information Security Management Act (FISMA), 44 U.S.C. Chapter 35, Subchapter II, as amended by the Federal Information Security Modernization Act of 2014 (Pub. L. 113-283); related OMB circulars and memoranda, such as Circular A-130, Managing Information as a Strategic Resource (July 28, 2016) ); and Memorandum M-17-12, 12 Preparing for and Responding to a Breach of Personally Identifiable Information (January 3, 2017); National Institute of Standards and Technology (NIST) directives; and the Federal Acquisition Regulations, including any applicable amendments published after the effective date of this agreement. These laws, directives, and regulations include requirements for safeguarding Federal information systems and personally identifiable information (PII) used in Federal agency business processes, as well as related reporting requirements. Both agencies recognize recognize, and will implement implement, the laws, regulations, NIST standards, and OMB directives including those published subsequent to the effective date of this agreement. FISMA requirements apply to all Federal contractors, organizations, or entities that possess or use Federal information, or that operate, use, or have access to Federal information systems on behalf of an agency. Both agencies are responsible for oversight and compliance of their contractors and agents.

Security Procedures. SSA and VA OPM will comply with the requirements of the Federal Information Security Management Act (FISMA), 44 U.S.C. Chapter 35, Subchapter II, as amended by the Federal Information Security Modernization Act of 2014 (Pub. L. 113-283); related OMB circulars and memoranda, such as Circular A-130, Managing Federal Information as a Strategic Resource (July 28, 2016) ), and Memorandum M-17-12, Preparing for and Responding to a Breach of Personally Identifiable Information (January 3January3, 2017); National Institute of Standards and Technology (NIST) directives; and the Federal Acquisition Regulations, including any applicable amendments published after the effective date of this agreement. These laws, directives, and regulations include requirements for safeguarding Federal information systems and personally identifiable information (PII) used in Federal agency business processes, as well as related reporting requirements. Both agencies recognize recognize, and will implement implement, the laws, regulations, NIST standards, and OMB directives including those published subsequent to the effective date of this agreement. FISMA requirements apply to all Federal contractors, organizations, or entities that possess or use Federal information, or that operate, use, or have access to Federal information systems on behalf of an agency. Both agencies are responsible for oversight and compliance of their contractors and agents.

Security Procedures. SSA and VA HUD will comply with the requirements of the Federal Information Security Management Act (FISMA), 44 U.S.C. Chapter 35, Subchapter II, as amended by the Federal Information Security Modernization Act of 2014 (Pub. L. 113-283); related OMB circulars and memoranda, such as Circular A-130, Managing Information as a Strategic Resource (July 28, 2016) and Memorandum M-17-12, 12 Preparing for and Responding to a Breach of Personally Identifiable Information (January 3, 2017); National Institute of Standards and Technology (NIST) directives; and the Federal Acquisition Regulations, including any applicable amendments published after the effective date of this agreement. These laws, directives, and regulations include requirements for safeguarding Federal information systems and personally identifiable information (PII) used in Federal agency business processes, as well as related reporting requirements. Both agencies recognize recognize, and will implement implement, the laws, regulations, NIST standards, and OMB directives including those published subsequent to the effective date of this agreement. FISMA requirements apply to all Federal contractors, organizations, or entities that possess or use Federal information, or that operate, use, or have access to Federal information systems on behalf of an agency. Both agencies are responsible for oversight and compliance of their contractors and agents.

Security Procedures. SSA and VA OPM will comply with the requirements of the Federal Information Security Management Act (FISMA), 44 U.S.C. Chapter 35, Subchapter II, as amended by the Federal Information Security Modernization Act of 2014 (Pub. L. 113-283); related OMB circulars and memoranda, such as Circular A-130, Managing Information as a Strategic Resource (July 28, 2016) ); and Memorandum M-17-12, Preparing for and Responding to a Breach of Personally Identifiable Information (January 3, 2017); National Institute of Standards and Technology (NIST) directives; and the Federal Acquisition Regulations, including any applicable amendments published after the effective date of this agreement. These laws, directives, and regulations include requirements for safeguarding Federal information systems and personally identifiable information (PII) used in Federal agency business processes, as well as related reporting requirements. Both agencies recognize recognize, and will implement implement, the laws, regulations, NIST standards, and OMB directives including those published subsequent to the effective date of this agreement. FISMA requirements apply to all Federal contractors, organizations, or entities that possess or use Federal information, or that operate, use, or have access to Federal information systems on behalf of an agency. Both agencies are responsible for oversight and compliance of their contractors and agents.

Security Procedures. SSA and VA OPM will comply with the requirements of the Federal Information Security Management Act (FISMA), 44 U.S.C. Chapter 35, Subchapter II, ; as amended by the Federal Information Security Modernization Act of 2014 (Pub. L. 113-283); related OMB circulars and memoranda, such as Circular A-130, Managing Federal Information as a Strategic Resource (July 28, 2016) and Memorandum M-17-12, Preparing for and Responding to a Breach of Personally Identifiable Information (January 3, 2017); National Institute of Standards and Technology (NIST) directives; and the Federal Acquisition Regulations, including any applicable amendments published after the effective date of this agreement. These laws, directives, and regulations include requirements for safeguarding Federal information systems and personally identifiable information (PII) used in Federal agency Agency business processes, as well as related reporting requirements. Both agencies recognize and will implement the laws, regulations, NIST standards, and OMB directives including those published subsequent to the effective date of this agreement. FISMA requirements apply to all Federal contractors, organizations, or entities that possess or use Federal information, or that operate, use, or have access to Federal information systems on behalf of an agency. Both agencies are responsible for oversight and compliance of their contractors and agents.

Security Procedures. SSA and VA OPM will comply with the requirements of the Federal Information Security Management Act (FISMA), 44 U.S.C. Chapter 35, Subchapter II, ; as amended by the Federal Information Security Modernization Act of 2014 (Pub. L. 113-283); related OMB circulars and memoranda, such as Circular A-130, Managing Information as a Strategic Resource (July 28, 2016) and Memorandum M-17-12, Preparing for and Responding to a Breach of Personally Identifiable Information (January 3, 2017); National Institute of Standards and Technology (NIST) directives; and the Federal Acquisition Regulations, including any applicable amendments published after the effective date of this agreement. These laws, directives, and regulations include requirements for safeguarding Federal information systems and personally identifiable information (PII) used in Federal agency Agency business processes, as well as related reporting requirements. Both agencies recognize and will implement the laws, regulations, NIST standards, and OMB directives including those published subsequent to the effective date of this agreement. FISMA requirements apply to all Federal contractors, organizations, or entities that possess or use Federal information, or that operate, use, or have access to Federal information systems on behalf of an agency. Both agencies are responsible for the oversight and compliance of their contractors and agents.

Security Procedures. SSA and VA OPM will comply with the requirements of the Federal Information Security Management Act (FISMA), 44 U.S.C. Chapter 35, Subchapter II, as amended by the Federal Information Security Modernization Act of 2014 (Pub. L. 113-283); related OMB circulars and memoranda, such as Circular A-130, Managing Federal Information as a Strategic Resource (July 28, 2016) ), and Memorandum M-17-12, Preparing for and Responding to a Breach of Personally Identifiable Information (January 3, 2017); National Institute of Standards and Technology (NIST) directives; and the Federal Acquisition Regulations, including any applicable amendments published after the effective date of this agreement. These laws, directives, and regulations include requirements for safeguarding Federal information systems and personally identifiable information (PII) used in Federal agency business processes, as well as related reporting requirements. Both agencies recognize and will implement the laws, regulations, NIST standards, and OMB directives including those published subsequent to the effective date of this agreement. FISMA requirements apply to all Federal contractors, organizations, or entities that possess or use Federal information, or that operate, use, or have access to Federal information systems on behalf of an agency. Both agencies are responsible for oversight and compliance of their contractors and agents.

Security Procedures. SSA and VA ED will comply with the requirements of the Federal Information Security Management Act (FISMA), 44 U.S.C. Chapter 35, Subchapter II, as amended by the Federal Information Security Modernization Act of 2014 (Pub. L. 113-283); related OMB circulars and memoranda, such as Circular A-130, Managing Information as a Strategic Resource (July 28, 2016) ); and Memorandum M-17-12, 12 Preparing for and Responding to a Breach of Personally Identifiable Information (January 3, 2017); National Institute of Standards and Technology (NIST) directives; and the Federal Acquisition Regulations, including any applicable amendments published after the effective date of this agreementAgreement. These laws, directives, and regulations include requirements for safeguarding Federal information systems and personally identifiable information (PII) used in Federal agency business processes, as well as related reporting requirements. Both agencies recognize recognize, and will implement implement, the laws, regulations, NIST standards, and OMB directives including those published subsequent to the effective date of this agreementAgreement. FISMA requirements apply to all Federal contractors, organizations, or entities that possess or use Federal information, or that operate, use, or have access to Federal information systems on behalf of an agency. Both agencies are responsible for oversight and compliance of their contractors and agents.

Security Procedures. SSA and VA RRB will comply with the requirements of the Federal Information Security Management Act (FISMA), 44 U.S.C. Chapter 35, Subchapter II, as amended by the Federal Information Security Modernization Act of 2014 (Pub. L. 113-283); related OMB Office of Management and Budget (OMB) circulars and memoranda, such as Circular A-130A- 130, Managing Information as a Strategic Resource (July 28, 2016) ); and Memorandum M-17-12, 12 Preparing for and Responding to a Breach of Personally Identifiable Information (January 3, 2017); National Institute of Standards and Technology (NIST) directives; and the Federal Acquisition Regulations, including any applicable amendments published after the effective date of this agreement. These laws, directives, and regulations include requirements for safeguarding Federal information systems and personally identifiable information (PII) used in Federal agency business processes, as well as related reporting requirements. Both agencies recognize and will implement the laws, regulations, NIST standards, and OMB directives including those published subsequent to the effective date of this agreement. FISMA requirements apply to all Federal contractors, organizations, or entities that possess or use Federal information, or that operate, use, or have access to Federal information systems on behalf of an agency. Both agencies are responsible for oversight and compliance of their contractors and agents.

Security Procedures. SSA and VA OPM will comply with the requirements of the Federal Information Security Management Act (FISMA), 44 U.S.C. Chapter 35, Subchapter II, as amended by the Federal Information Security Modernization Act of 2014 (Pub. L. 113-283); related OMB circulars and memoranda, such as Circular A-130, Managing Federal Information as a Strategic Resource (July 28, 2016) ), and Memorandum M-17-12, Preparing for and Responding to a Breach of Personally Identifiable Information (January 3, 2017); National Institute of Standards and Technology (NIST) directives; and the Federal Acquisition Regulations, including any applicable amendments published after the effective date of this agreement. These laws, directives, and regulations include requirements for safeguarding Federal information systems and personally identifiable information (PII) used in Federal agency business processes, as well as related reporting requirements. Both agencies recognize recognize, and will implement implement, the laws, regulations, NIST standards, and OMB directives including those published subsequent to the effective date of this agreement. FISMA requirements apply to all Federal contractors, organizations, or entities that possess or use Federal information, or that operate, use, or have access to Federal information systems on behalf of an agency. Both agencies are responsible for oversight and compliance of their contractors and agents.

Security Procedures. SSA and VA CNCS will comply with the requirements of the Federal Information Security Management Act (FISMA), ) (44 U.S.C. Chapter 35, Subchapter II), as amended by the Federal Information Security Modernization Act of 2014 (Pub. L. 113-283); related OMB circulars and memoranda, such as Circular A-130, Managing Information as a Strategic Resource (July 28, 2016) and Memorandum M-17-12, Preparing for and Responding to a Breach of Personally Identifiable Information (January 3, 2017); National Institute of Standards and Technology (NIST) directives; and the Federal Acquisition Regulations, including any applicable amendments published after the effective date of this agreement. These laws, directives, and regulations include requirements for safeguarding Federal information systems and personally identifiable information (PII) used in Federal agency business processes, as well as related reporting requirements. Both agencies recognize recognize, and will implement implement, the laws, regulations, NIST standards, and OMB directives directives, including those published subsequent to the effective date of this agreement. FISMA requirements apply to all Federal contractors, organizations, or entities that possess or use Federal information, or that operate, use, or have access to Federal information systems on behalf of an agency. Both agencies are responsible for oversight and compliance of their contractors and agents.

Security Procedures. SSA and VA RRB will comply with the requirements of the Federal Information Security Management Act (FISMA), 44 U.S.C. Chapter 35, Subchapter II, as amended by the Federal Information Security Modernization Act of 2014 (Pub. L. 113-283); related OMB circulars and memoranda, such as Circular A-130, Managing Information as a Strategic Resource (July 28, 2016) and Memorandum M-17-12, 12 Preparing for and Responding to a Breach of Personally Identifiable Information (January 3, 2017); National Institute of Standards and Technology (NIST) directives; and the Federal Acquisition Regulations, including any applicable amendments published after the effective date of this agreement. These laws, directives, and regulations include requirements for safeguarding Federal information systems and personally identifiable information (PII) used in Federal agency business processes, as well as related reporting requirements. Both agencies recognize recognize, and will implement implement, the laws, regulations, NIST standards, and OMB directives including those published subsequent to the effective date of this agreement. FISMA requirements apply to all Federal contractors, organizations, or entities that possess or use Federal information, or that operate, use, or have access to Federal information systems on behalf of an agency. Both agencies are responsible for oversight and compliance of their contractors and agents.

Security Procedures. SSA and VA CMS will comply with the requirements of the Federal Information Security Management Act (FISMA), 44 U.S.C. Chapter 35, Subchapter II§ 3541-3549, as amended by the Federal Information Security Modernization Act of 2014 (Pub. L. 113-283); related OMB circulars and memoranda, such as Circular A-130, Managing Management of Federal Information as a Strategic Resource Resources (July November. 28, 2016) 2000), and Memorandum M-17Xxxxxxxxxx X-00-1200, Preparing for and Responding to a Breach “Protection of Personally Identifiable Information Sensitive Agency Information,” (January 3June 23, 20172006); National Institute of Standards and Technology (NIST) directives; and the Federal Acquisition Regulations, including any applicable amendments published after the effective date of this agreementCMA. These laws, directives, and regulations include requirements for safeguarding Federal information systems and personally identifiable information Personally Identifiable Information (PII) used in Federal agency Agency business processes, as well as related reporting requirements. Both agencies will recognize and will implement the laws, regulations, NIST standards, and OMB directives including those published subsequent to the effective date of this agreement. FISMA requirements apply to all Federal contractors, organizations, or entities that possess or use Federal information, or that operate, use, or have access to Federal information systems on behalf of an agency. Both agencies are responsible for oversight and compliance of their contractors and agents.

Security Procedures. SSA VA and VA ED will comply with the requirements of the Federal Information Security Management Act (FISMA), 44 U.S.C. Chapter 35, Subchapter II, as amended by the Federal Information Security Modernization Act of 2014 (Pub. L. 113-283); related OMB circulars and memoranda, such as Circular A-130, Managing Information as a Strategic Resource (July 28, 2016) ); and Memorandum M-17-12, 12 Preparing for and Responding to a Breach of Personally Identifiable Information (January 3, 2017); National Institute of Standards and Technology (NIST) directives; and the Federal Acquisition Regulations, including any applicable amendments published after the effective date of this agreementAgreement. These laws, directives, and regulations include requirements for safeguarding Federal information systems and personally identifiable information (PII) used in Federal agency business processes, as well as related reporting requirements. Both agencies recognize recognize, and will implement implement, the laws, regulations, NIST standards, and OMB directives including those published subsequent to after the effective date of this agreementAgreement. FISMA requirements apply to all Federal contractors, organizations, or entities that possess or use Federal information, or that operate, use, or have access to Federal information systems on behalf of an agency. Both agencies are responsible for oversight and compliance of their contractors and agentsContractors and/or Agents.

Security Procedures. SSA and VA will comply with the requirements of the Federal Information Security Management Act (FISMA), 44 U.S.C. Chapter 35, Subchapter II, as amended by the Federal Information Security Modernization Act of 2014 (Pub. L. 113-283); related OMB Office of Management and Budget (OMB) circulars and memoranda, such as Circular A-130A- 130, Managing Information as a Strategic Resource (July 28, 2016) ), and Memorandum M-17M-06-1216, Preparing for and Responding to a Breach Protection of Personally Identifiable Sensitive Agency Information (January 3June 23, 20172006); National Institute of Standards and Technology (NIST) directives; and the Federal Acquisition Regulations, including any applicable amendments published after the effective date of this agreement. These laws, directives, and regulations include requirements for safeguarding Federal information systems and personally identifiable information (PII) used in Federal agency business processes, as well as related reporting requirements. Both agencies recognize and will implement the laws, regulations, NIST standards, and OMB directives including those published subsequent to the effective date of this agreement. FISMA requirements apply to all Federal contractors, organizations, or entities that possess or use Federal information, or that operate, use, or have access to Federal information systems on behalf of an agency. Both agencies are responsible for oversight and compliance of their contractors and agents.

Security Procedures. SSA and VA OPM will comply with the requirements of the Federal Information Security Management Act (FISMA), 44 U.S.C. Chapter 35, Subchapter II, as amended by the Federal Information Security Modernization Act of 2014 (Pub. L. 113-283); related OMB circulars and memoranda, such as Circular A-130, Managing Information as a Strategic Resource (July 28, 2016) ); and Memorandum M-17-12, Preparing for and Responding to a Breach of Personally Identifiable Information (January 3, 2017); National Institute of Standards and Technology (NIST) directives; and the Federal Acquisition Regulations, including any applicable amendments published after the effective date of this agreement. These laws, directives, and regulations include requirements for safeguarding Federal information systems and personally identifiable information (PII) used in Federal agency business processes, as well as related reporting requirements. Both agencies recognize and will implement implement, the laws, regulations, NIST standards, and OMB directives directives, including those published subsequent to after the effective date of this agreement. FISMA requirements apply to all Federal contractors, organizations, or entities that possess or use Federal information, or that operate, use, or have access to Federal information systems on behalf of an agency. Both agencies are responsible for the oversight and compliance of their contractors and agents.

Security Procedures. SSA and VA Fiscal Service will comply with the requirements of the Federal Information Security Management Act (FISMA), 44 U.S.C. Chapter 35, Subchapter II, as amended by the Federal Information Security Modernization Act of 2014 (Pub. L. 113-283); related OMB circulars and memoranda, such as Circular A-130, Managing Information as a Strategic Resource (July 28, 2016) and Memorandum M-17-12, Preparing for and Responding to a Breach of Personally Identifiable Information (January 3, 2017); National Institute of Standards and Technology (NIST) directives; and the Federal Acquisition Regulations, including any applicable amendments published after the effective date of this agreement. These laws, directives, and regulations include requirements for safeguarding Federal information systems and personally identifiable information (PII) used in Federal agency business processes, as well as related reporting requirements. Both agencies recognize recognize, and will implement implement, the laws, regulations, NIST standards, and OMB directives including those published subsequent subsequently to the effective date of this agreement. FISMA requirements apply to all Federal contractors, organizations, or entities that possess or use Federal information, or that operate, use, or have access to Federal information systems on behalf of an agency. Both agencies are responsible for oversight and compliance of their contractors and agents.