Controlled Unclassified Information (CUI): An Overview.

Slides:

Advertisements

Similar presentations

Reliability Center Data Request Task Force Report WECC Board Meeting April 2009.

Advertisements

UCSC History. UCSC: A brief history 60s University Placement Committee A lot of field trips/interaction with employers.

A-16 Portfolio Management Implementation Plan Update

U.S. Energy Information Administration Independent Statistics & Analysis Controlled Unclassified Information FCSM Conference Jacob Bournazian,

Civilian Agency Acquisition Council Ralph De Stefano Director Contract Policy Division Civilian Agency Acquisition Council.

THE NSF BUDGET Overview of Agency Funding Processes Presented by Beth Blue National Science Foundation Office of Budget, Finance, and Award Management.

Briefing Outline  Overview of the CUI Program  Establishment of the Program  Elements of the CUI Executive Order  Requirements and Timelines  Categories.

Briefing on Presidential Records Act and Federal Records Act Amendments of 2014 (HR 1233, PL ) Gary Stern and Paul Wester Wednesday, December 10,

Internal Audit Awareness

Data Ownership Responsibilities & Procedures

A-16 Supplemental Guidance Document FGDC Annual Report Ken Shaffer FGDC Deputy Staff Director FGDC Coordination Group November.

Information Governance and the Presidential Memo on Managing Government Records: Converging Issues and the Search for New Ideas Presidential Memorandum:

Consumer Work Group Presentation Federal Health IT Strategic Plan January 9, 2015 Gretchen Wyatt Office of Planning, Evaluation, and Analysis.

Alabama GIS Executive Council November 17, Alabama GIS Executive Council Governor Bob Riley signs Executive Order No. 38 on November 27 th, 2007.

A-16 Portfolio Management Plan Update Adrian Gardner, CIO, NASA Ivan DeLoatch, Executive Director, FGDC OS September 12, 2013 Steering Committee Meeting.

ZHRC/HTI Financial Management Training

Verification Visit by the Office of Special Education Programs (OSEP) September 27-29, 2010.

National Governor’s Association September 29-30, 2003 Salt Lake City, Utah.

Food and Agriculture Sector Coordinating Councils John L. Williams, DVM U.S. Department of Agriculture AFDO Annual Conference Kansas City, MO June 7, 2005.

CUI Statistical: Collaborative Efforts of Federal Statistical Agencies Eve Powell-Griner National Center for Health Statistics.

Bylaws, Rules, and Periodic Review – Updates from Standards and Practices Julie Adams, ASCCC Executive Director Craig Rutan, ASCCC South Representative.

Program Manager, Information Sharing Environment UNCLASSIFIED ISE Enterprise Architecture and Common Standards Program.

NSTC Smart Grid Subcommittee Overview and Goals for Ongoing Federal/State Collaboration By George Arnold, NIST & Jessica Zufolo, RUS NARUC Annual Convention,

United States Space-Based Positioning, Navigation & Timing Policy Joint Navigation Conference 2007 April 2 - 4, 2007 Charles Daniels, Major, USAF Senior.

Policy Council and Program Planning. The Head Start Program Planning Cycle National Center on Program Management and Fiscal Operations (PMFO)

Standards for Internal Control in the Government Going Green Standards for Internal Control in the Federal Government 1.

The Federal Bureaucracy. The combination of people, procedures, and agencies through which the federal government operates makes up the FEDERAL BUREAUCRACY.

Agency Drafts Statement of Scope Governor Approves Statement of Scope (2) No Agency Drafts: Special Report for rules impacting housing

GAO Employee Organization Draft Constitution Briefing and feedback session for bargaining unit employees Presented by the Interim Council Constitution.

October 8, 2003Ontario Energy Board1 Ontario Energy Board Update E.A. Mills Director – Regulatory Affairs Market Advisory Committee October 8, 2003.

Information Sharing Challenges, Trends and Opportunities

NSDI Strategic Plan Update FGDC Coordination Group Meeting September 10, 2013.

1 Information Sharing Environment (ISE) Privacy Guidelines Jane Horvath Chief Privacy and Civil Liberties Officer.

UNCLASSIFIED 1 Partnership Opportunities Catalog United States Joint Forces Command Joint Warfighting Center Joint Warfighting Center Partnership Opportunities.

The Bureaucracy The Real Power?. Objectives Know the organizational structure of the Bureaucracy. Know how the bureaucracy is important in implementing.

M u l t I b e a m III W o r k s h o p M u l t I b e a m III W o r k s h o p National Geophysical Data Center / World Data Centers NOAA Slide 1 End-to-End.

1 You are a New Member of the JAC; NOW WHAT? As a new Journey-Level Advisory Council (JAC) member, you probably have many questions, including those about.

The Electric Reliability Organization: Getting from here to there. Gerry Cauley Director, Standards ERO Project Manager ERO Slippery Slope NERC Today Uphill.

The Government Recordkeeping Survey 2008 Natalie Dewson, Senior Advisor, Government Recordkeeping Programme, Archives New Zealand.

What is Mandatory Declassification Review (MDR)? MDR is a means by which any individual, to include members of the public, can request any agency to review.

U.S. Department of Education Safeguarding Student Privacy Melanie Muenzer U.S. Department of Education Chief of Staff Office of Planning, Evaluation, and.

International Atomic Energy Agency Roles and responsibilities for development of disposal facilities Phil Metcalf Workshop on Strategy and Methodologies.

Fax: (703) DoD BIOMETRICS PROGRAM DoD Biometrics Management Office Phone: (703)

Mandatory Declassification Review and the Interagency Security Classification Appeals Panel Society of American Archivists, Austin, Texas Session 603:

1Office of the Federal Coordinator for Meteorology OFCM OFCM Special Session: Uncertainty in Atmospheric Transport and Diffusion (ATD) Models Setting the.

NSDI Strategic Plan Update National Geospatial Advisory Committee Meeting December 11, 2013.

NSDI Strategic Plan Update January 14, NSDI Strategic Plan High-level Timeline 2 Timeframe Activity Dec - Feb Project Start-up – COMPLETED Feb -

NSDI Strategic Plan Update August NSDI Strategic Plan – Purpose/Scope Purpose: Develop a concise, updated strategic plan to guide the Federal government’s.

Presented by Eliot Christian, USGS Accessibility, usability, and preservation of government information (Section 207 of the E-Government Act) April 28,

AFSA Chapter Officer Training Module 1 Officer Roles and Responsibilities.

Federal Geographic Data Committee Update NGAC Meeting September 23, 2010 Ivan DeLoatch, Executive Director.

NSDI Strategic Plan Update FGDC Coordination Group Meeting November 19, 2013.

Internal Audit Section. Authorized in Section , Florida Statutes Section , Florida Statutes (F.S.), authorizes the Inspector General to review.

1 Brian Carney National RECC Coordinator Regional Emergency Communications Coordination Working Groups (RECCWG) National.

Improving Chemical Facility Safety & Security RRT Quarterly Meeting July 16, 2015.

Shared Services and Third Party Assurance: Panel May 19, 2016.

1 1 Influencing Evaluation Policy and Practice: A Progress Report from AEA’s Evaluation Policy Task Force Patrick Grasso Chair, AEA Evaluation Policy Task.

Overview of Structure General Data Protection Regulation (GDPR)

University Career Services Committee

Money Bills Amendment Procedure and Related Matters Bill [B 75–2008]

IDN Variant TLDs Program Update

Proposed Strategic Planning Process for FY 2013/14 thru FY 2015/16

Roles and Responsibilities

“Presidential Advisers and Executive Agencies”

Budget and Planning Update

TIBC Budget Formulation Improvement Project

Second Independent Evaluation of UNAIDS

“Executive Departments & Cabinet” Chapter Six, Section Four – “Independent Agencies and Regulatory Commissions.

The GEF Public Involvement Policy

Part 1: Controlled Unclassified Information (CUI)

Presentation transcript:

Controlled Unclassified Information (CUI): An Overview

2 The Memorandum: Adopts, defines, and institutes “Controlled Unclassified Information” (CUI) as the single categorical designation for all information referred to as “Sensitive But Unclassified” (SBU) in the Information Sharing Environment (ISE); and Establishes a corresponding new CUI Framework for designating, marking, safeguarding, and disseminating information designated as CUI; and Designates the National Archives and Records Administration (NARA) as the Executive Agent, to oversee and implement the new CUI Framework. On May 9, 2008, the President released the Memorandum for the Heads of Executive Departments and Agencies on the Designation and Sharing of Controlled Unclassified Information. May 9 th Presidential Memorandum The purpose of the Framework is to standardize practices and thereby improve the sharing of information.

3 The Presidential Memorandum designates NARA as the CUI Executive Agent. On May 21, 2008, the Archivist of the United States established the CUI Office within NARA to oversee and manage the implementation of the new CUI Framework. CUI Executive Agent CUI CUICouncilCUICouncil The CUI Council members shall be drawn from within the existing ISC. As appropriate, the CUI Council will consult with the ISC’s State, Local, Tribal, and Private Sector Subcommittee. Representing the needs and equities of ISE participants, the CUI Council will provide advice and recommendations to the Executive Agent on ISE-wide CUI policies, procedures, guidelines, and standards. The PM-ISE issued guidance establishing the CUI Council on July 9, The first CUI Council meeting was held on Aug. 21, DepartmentsandAgenciesDepartmentsandAgencies Heads of all Federal departments and agencies will be responsible for implementing the CUI Framework standards for ISE-wide CUI policy and ensuring that their departments or agencies comply with the CUI Framework. On June 30, 2008, the Director of the CUI Office sent a letter to Departments and Agencies with initial implementing guidance for CUI. CUI Governance Structure

4 The CUI Council will carry out the following functions as directed by the President: Serve as the primary advisor to the Executive Agent on issues pertaining to the CUI Framework Advise the Executive Agent in developing procedures, guidelines, and standards necessary to establish, implement, and maintain the CUI Framework; Ensure coordination among the depts. and agencies participating in the CUI Framework; and Resolve complaints and disputes among departments and agencies about proper designation or marking of CUI. The CUI Council Department of Commerce Department of Defense Director of National Intelligence (IC) Department of Energy Federal Bureau of Investigation Department of Health and Human Services Joint Staff Department of Homeland Security Department of Interior Department of Justice Office of Management and Budget Program Manager for the Information Sharing Environment Department of State Department of Transportation Department of Treasury Environmental Protection Agency Nuclear Regulatory Commission Two SLT members and two private sector members on the CUI Council.

5 Two Private Sector Representatives Frederick V. Riccardi Senior Executive Director Security and Mission Assurance ManTech International Corporation National Defense Industrial Association – Chairman Industrial Security Committee Nominated by the NISPPAC membership for representation on CUI Council Turner D. Madden, Esquire Madden & Patton, LLC Vice Chairman of the Partnership for Critical Infrastructure and the Co-Chairman of the Commercial Sector Coordinating Council for the U.S. Department of Homeland Security  Elected by the sub-sector chairs in the Commercial Sector Nominated by the industry members of the Critical Infrastructure Partnership Advisory Council (CIPAC) for representation on CUI Council

6 CUI Framework Implementation Timeline Overview 08/21/08 Presidential CUI Memo May 9 NARA CUI Memo May 21 Background CUI Framework May 20 Outreach to Departments & Agencies Jun-Aug Dept Agency Letter Jun 27 CUI Council Letter Jul 9 Updated data call to Departments & Agencies Aug 8 CUIO Brief to ISC Jul 16 Phase Stand-up Initial Outreach Planning Implementation – Phase I Implementation – Phase II Date May 08 Jun Jul Aug Sep 08 Oct Nov Dec 08………Sep 09 Oct 09 Oct 10 Oct 11 Oct 12 FY 08 FY09 FY10 FY 11 FY12 FY 13 CUI Council Initial Meeting Aug 21 CUIC Sep 18 Data call due Sep 4 CUIO Review Data call Updates/ Outreach CUIO at PM- ISE PR Aug 28 CUIC Oct 16 CUIC Nov 20 CUIC Dec 18 Guiding Documents CUI Council Meetings Stand-up Outreach Phase Planning Phase Implementation Phase Departments & Agencies Identify reps Every 3 rd Thurs as needed Milestones for Implementation Draft Implementing Guidance Safeguarding Dissemination Designating Marking Initiate CUI 101Training Design Registry Review Department & Agency Plans Annual Report Finalize Department & Agency Plans Activate Registry Initiate CUI 201Training Identify and designate CUI Alignment of Policy-based Markings Begin federal rule-making process Annual Report FY09 FY10 Alignment of Policy Markings with Exceptions Alignment of Regulatory Markings Confirm necessary changes to regulation and statute Annual Report FY11 Department & Agencies submit Plans to CUIO Monitor Department & Agency compliance with CUI policy, standards, and markings Evaluate effectiveness of CUI Implementation Policy and Guidance Update Policy and Guidance as necessary Annual Report FY12 – FY 13 Full Implementation of CUI Framework May 2013

7 Development of Centralized Implementation Plan  Set priorities for implementation  Establish milestones for alignment to CUI Framework  Establish training schedule Development of Implementation Policies  Define Safeguarding Standards  Define Department and Agency CUI Dissemination Policies  Develop detailed guidance on CUI life cycle, portion marking, and application of CUI Framework to archived information  Establish Centralized CUI Training (“CUI 101”) Begin the development of Department- and Agency- specific Implementation Plans  Establish Department- and Agency-specific CUI Training (“CUI 201”) FY09 Priorities The intent is to provide departments and agencies the information that they need to plan for implementation and align this implementation with their normal budget cycles.

8 Guiding Principles SharingCUI will be shared as broadly as possible. ProtectionCUI will be appropriately protected. Rationalization CUI policy will be developed with deliberate consideration to managing risk and information sharing. Flexibility CUI policy development will respond to changes through centralized management and distributed execution. Inclusiveness CUI policy will address the needs of all ISE partners, both users and producers of information, taking into account all media types. Standardization CUI policy will be standardized so all participants are governed by uniform definitions and practices. Transparency CUI policy will be developed with input by State, local, tribal, and private sector entities and comment by the public.

9 Policy Development Process Safeguarding introduced to CUI Council 18 Sep 08  Discussed at five Council sessions Working Group formed 25 Sep 08  Strawman language discussed and vetted at three WG sessions Draft strawman guidance organized into six general sections: -General Policy- Storage -Waivers for Exigent Situations- Transmission -Controls in Use- Destruction Draft Interim Guidance briefed at 19 Feb 09 CUI Council Retained in “draft” status until other focus areas drafted and vetted through same CUIO process

10 Policy Development – Stage in Process CUI Policy is being organized under eight primary focus areas Safeguarding Dissemination Dispute Resolution Markings Designation Life Cycle Exceptions Penalties/Enforcement Intro developmentDraft Final developmentDraftdevelopmentDraftdevelopmentDraftdevelopmentDraft Intro Final Intro

11 Other Implementation Preparation Activities Designation Specified Dissemination Registry Training Outreach

12 Contact Information Controlled Unclassified Information Office National Archives and Records Administration 700 Pennsylvania Avenue, N.W., Room 100 Washington, DC (202) (voice) (202) (fax) ( ) (website)