Privacy Act of 1974; System of Records, 29315-29317 [2015-12324]
Download as PDF
tkelley on DSK3SPTVN1PROD with NOTICES
Federal Register / Vol. 80, No. 98 / Thursday, May 21, 2015 / Notices
Officer, Directorate of Oversight and
Compliance, Regulatory and Audit
Matters Office, 9010 Defense Pentagon,
Washington, DC 20301–9010.
Instructions: All submissions received
must include the agency name, docket
number and title for this Federal
Register document. The general policy
for comments and other submissions
from members of the public is to make
these submissions available for public
viewing on the Internet at https://
www.regulations.gov as they are
received without change, including any
personal identifiers or contact
information.
Any associated form(s) for this
collection may be located within this
same electronic docket and downloaded
for review/testing. Follow the
instructions at https://
www.regulations.gov for submitting
comments. Please submit comments on
any given form identified by docket
number, form number, and title.
FOR FURTHER INFORMATION CONTACT: To
request more information on this
proposed information collection or to
obtain a copy of the proposal and
associated collection instruments,
please write to Christopher Hall, Office
of Small Business Programs, Program
Manager, Procurement Technical
Assistance Program, Defense Logistics
Agency (email: christopher.hall@
dla.mil), Phone: (703) 767–3297.
SUPPLEMENTARY INFORMATION:
Title; Associated Form; and OMB
Number: Procurement Technical
Assistance Center Cooperative
Agreement Performance Report; DLA
Form 1806; OMB Control Number 0704–
0320.
Needs and Uses: The information
collection requirement is necessary as
the Defense Logistics Agency uses the
report as the principal instrument for
measuring the performance of
Cooperative Agreement awards made
under 10 U.S.C. chapter 142.
Affected Public: Not-for-profit
institutions; state, local or tribal
government; individuals or households.
Annual Burden Hours: 2,660.
Number of Respondents: 95.
Responses per Respondent: 4.
Annual Responses: 380.
Average Burden per Response: 7
hours.
Frequency: Quarterly.
Each cooperative agreement award
recipient submitted goals and objectives
in their application that were
subsequently incorporated into their
cooperative agreement awards. The
level of achievement of these goals and
the funds expended in the process of
conducting the program is measured by
VerDate Sep<11>2014
20:28 May 20, 2015
Jkt 235001
the report. The government’s continued
funding of a cooperative agreement and
the decision to exercise an option award
for a cooperative agreement award is
based to a significant degree on the
award holder’s current performance as
measured by the report. Information
from the report is also used to identify
programs that may be in need of
assistance and/or increased
surveillance.
Dated: May 18, 2015.
Aaron Siegel,
Alternate OSD Federal Register Liaison
Officer, Department of Defense.
[FR Doc. 2015–12345 Filed 5–20–15; 8:45 am]
BILLING CODE 5001–06–P
DEPARTMENT OF DEFENSE
Office of the Secretary
[Docket ID DoD–2015–OS–0051]
Privacy Act of 1974; System of
Records
Office of the Secretary of
Defense, DoD.
ACTION: Notice to alter a System of
Records.
AGENCY:
The Office of the Secretary of
Defense proposes to alter a system of
records, DCIO 01, entitled ‘‘Defense
Industrial Base (DIB) Cyber Security/
Information Assurance Records’’ to
facilitate the sharing of DIB
cybersecurity threat information and
best practices to DIB companies to
enhance and supplement DIB
participant capabilities to safeguard
DoD information that resides on, or
transits, DIB unclassified information
systems. When incident reports are
received, DoD Cyber Crime Center (DC3)
personnel analyze the information
reported for cyber threats and
vulnerabilities in order to develop
response measures as well as improve
U.S. Government and DIB
understanding of advanced cyber threat
activity. DoD may work with a DIB
company on a more detailed, digital
forensics analysis or damage
assessment, which may include sharing
of additional electronic media/files or
information regarding the incident or
the affected systems, networks, or
information.
SUMMARY:
Comments will be accepted on or
before June 22, 2015. This proposed
action will be effective the date
following the end of the comment
period unless comments are received
which result in a contrary
determination.
DATES:
PO 00000
Frm 00017
Fmt 4703
Sfmt 4703
29315
You may submit comments,
identified by docket number and title,
by any of the following methods:
* Federal Rulemaking Portal: https://
www.regulations.gov.
Follow the instructions for submitting
comments.
* Mail: Department of Defense, Office
of the Deputy Chief Management
Officer, Directorate of Oversight and
Compliance, Regulatory and Audit
Matters Office, 9010 Defense Pentagon,
Washington, DC 20301–9010.
Instructions: All submissions received
must include the agency name and
docket number for this Federal Register
document. The general policy for
comments and other submissions from
members of the public is to make these
submissions available for public
viewing on the Internet at https://
www.regulations.gov as they are
received without change, including any
personal identifiers or contact
information.
ADDRESSES:
Ms.
Cindy Allard, Chief, OSD/JS Privacy
Office, Freedom of Information
Directorate, Washington Headquarters
Service, 1155 Defense Pentagon,
Washington, DC 20301–1155, or by
phone at (571) 372–0461.
SUPPLEMENTARY INFORMATION: The Office
of the Secretary of Defense notices for
systems of records subject to the Privacy
Act of 1974 (5 U.S.C. 552a), as amended,
have been published in the Federal
Register and are available from the
address in FOR FURTHER INFORMATION
CONTACT or at the Defense Privacy and
Civil Liberties Division Web site at
https://dpcld.defense.gov/.
The proposed system report, as
required by U.S.C. 552a(r) of the Privacy
Act of 1974, as amended, was submitted
on May 15, 2015, to the House
Committee on Oversight and
Government Reform, the Senate
Committee on Governmental Affairs,
and the Office of Management and
Budget (OMB) pursuant to paragraph 4c
of Appendix I to OMB Circular No. A–
130, ‘‘Federal Agency Responsibilities
for Maintaining Records About
Individuals,’’ dated February 8, 1996
(February 20, 1996, 61 FR 6427).
FOR FURTHER INFORMATION CONTACT:
Dated: May 18, 2015.
Aaron Siegel,
Alternate OSD Federal Register Liaison
Officer, Department of Defense.
DCIO 01
Defense Industrial Base (DIB) Cyber
Security/Information Assurance Records
(May 18, 2012, 77 FR 29616).
CHANGES:
E:\FR\FM\21MYN1.SGM
21MYN1
29316
*
*
Federal Register / Vol. 80, No. 98 / Thursday, May 21, 2015 / Notices
*
*
*
SYSTEM NAME:
Delete entry and replace with
‘‘Defense Industrial Base (DIB)
Cybersecurity (CS) Activities Records.’’
SYSTEM LOCATION:
Delete entry and replace with
‘‘Defense Industrial Base (DIB)
Cybersecurity Program, 6000 Defense
Pentagon, ATTN: DIB CS Program,
Washington, DC 20301–6000.
DoD Cyber Crime Center, 911 Elkridge
Landing Road, Linthicum, MD 21090–
2991.’’
*
*
*
*
*
CATEGORIES OF RECORDS IN THE SYSTEM:
Delete entry and replace with ‘‘DIB
company point of contact information
includes name, company name and
mailing address, work division/group,
work email, and work telephone
number.’’
AUTHORITY FOR MAINTENANCE OF THE SYSTEM:
Delete entry and replace with ‘‘10
U.S.C. 2224, Defense Information
Assurance Program; 44 U.S.C. 3544,
Federal Agency Responsibilities; Public
Law 113–58, National Defense
Authorization Act for Fiscal Year 2015,
Section 1632, Reporting on Cyber
Incidents with Respect to Networks and
Information Systems of Operationally
Critical Contractors (10 U.S.C. Chapter
19, Cyber Matters); Presidential Policy
Directive PPD–21, Critical
Infrastructure, Security and Resilience;
DoD Directive (DoDD) 3020.40, DoD
Policy and Responsibilities for Critical
Infrastructure; DoDD 5505.13E, DoD
Executive Agent (EA) for the DoD Cyber
Crime Center (DC3); DoD Manual
3020.45, Defense Critical Infrastructure
Program (DCIP): DoD Mission-Based
Critical Asset Identification Process
(CAIP); and DoD Instruction 5205.13,
Defense Industrial Base (DIB) Cyber
Security/Information Assurance (CS/IA)
Activities.’’
tkelley on DSK3SPTVN1PROD with NOTICES
PURPOSE(S):
Delete entry and replace with ‘‘To
facilitate the sharing of DIB
cybersecurity threat information and
best practices to DIB companies to
enhance and supplement DIB
participant capabilities to safeguard
DoD information that resides on, or
transits, DIB unclassified information
systems. When incident reports are
received, DoD Cyber Crime Center (DC3)
personnel analyze the information
reported for cyber threats and
vulnerabilities in order to develop
response measures as well as improve
U.S. Government and DIB
VerDate Sep<11>2014
20:28 May 20, 2015
Jkt 235001
understanding of advanced cyber threat
activity. DoD may work with a DIB
company on a more detailed, digital
forensics analysis or damage
assessment, which may include sharing
of additional electronic media/files or
information regarding the incident or
the affected systems, networks, or
information.’’
ROUTINE USES OF RECORDS MAINTAINED IN THE
SYSTEM, INCLUDING CATEGORIES OF USERS AND
THE PURPOSES OF SUCH USES:
Delete entry and replace with ‘‘In
addition to the disclosures generally
permitted under 5 U.S.C. 552a(b) of the
Privacy Act of 1974, as amended, the
records contained herein may
specifically be disclosed outside the
DoD as a routine use pursuant to 5
U.S.C. 552a(b)(3) as follows:
DIB company point of contact
information may be provided to other
participating DIB companies to facilitate
the sharing of information and expertise
related to the DIB CS Program including
cyber threat information and best
practices, and mitigation strategies.
Law Enforcement Routine Use: If a
system of records maintained by a DoD
Component to carry out its functions
indicates a violation or potential
violation of law, whether civil, criminal,
or regulatory in nature, and whether
arising by general statute or by
regulation, rule, or order issued
pursuant thereto, the relevant records in
the system of records may be referred,
as a routine use, to the agency
concerned, whether federal, state, local,
or foreign, charged with the
responsibility of investigating or
prosecuting such violation or charged
with enforcing or implementing the
statute, rule, regulation, or order issued
pursuant thereto.
Counterintelligence Purpose Routine
Use: A record from a system of records
maintained by a DoD Component may
be disclosed as a routine use outside the
DoD or the U.S. Government for the
purpose of counterintelligence activities
authorized by U.S. Law or Executive
Order or for the purpose of enforcing
laws which protect the national security
of the United States.
Disclosure of Information to the
National Archives and Records
Administration Routine Use: A record
from a system of records maintained by
a DoD Component may be disclosed as
a routine use to the National Archives
and Records Administration for the
purpose of records management
inspections conducted under authority
of 44 U.S.C. 2904 and 2906.
The DoD Blanket Routine Uses set
forth at the beginning of the Office of
the Secretary of Defense/Joint Staff
PO 00000
Frm 00018
Fmt 4703
Sfmt 4703
compilation of systems of records
notices may apply to this system. The
complete list of the DoD blanket routine
uses can be found online at: https://
dpcld.defense.gove/Privacy/
SORNsIndex/BlanketRoutineUses.aspx
Any release of information contained
in this system of records outside the
DoD will be compatible with the
purpose(s) for which the information is
collected and maintained.’’
*
*
*
*
*
RETRIEVABILITY:
Delete entry and replace with ‘‘DIB
Company POC information is retrieved
primarily by company name and work
division/group and secondarily by
individual POC name.
DIB cyber incident reports are
primarily retrieved by incident number
but may also be retrieved by company
name. They are not retrieved by the
individual name.’’
SAFEGUARDS:
Delete entry and replace with
‘‘Records are accessed by personnel
with security clearances who are
properly screened, trained, under a
signed confidentiality agreement, and
determined to have ‘need to know’.
Access to records requires DoD
Common Access Card (CAC) and PIN.
Physical access controls include
security guards, identification badges,
key cards, cipher locks, and
combination locks.’’
*
*
*
*
*
SYSTEM MANAGER(S) AND ADDRESS:
Delete entry and replace with
‘‘Director, DIB Cybersecurity, 6000
Defense Pentagon, ATTN: DIB CS
Program, Washington, DC 20301–6000.’’
NOTIFICATION PROCEDURE:
Delete entry and replace with
‘‘Individuals seeking to determine
whether this system of records contains
information on themselves should
address written inquiries to Director,
DIB Cybersecurity Office, 6000 Defense
Pentagon, ATTN: DIB CS Program,
Washington, DC 20301–6000.
Signed, written requests should
contain the individual’s name, and
company name and work division/
group.’’
RECORD ACCESS PROCEDURES:
Delete entry and replace with
‘‘Individuals seeking access to
information about themselves contained
in this system of records should address
a written request to the Office of the
Secretary of Defense/Joint Staff (OSD/
JS), Freedom of Information Act (FOIA)
Requester Service Center, 1155 Defense
Pentagon, Washington, DC 20301–1155.
E:\FR\FM\21MYN1.SGM
21MYN1
Federal Register / Vol. 80, No. 98 / Thursday, May 21, 2015 / Notices
Signed, written requests should
contain the individual’s name, company
name and work division/group, and the
name and number of this system of
records notice.’’
*
*
*
*
*
RECORD SOURCE CATEGORIES:
Delete entry and replace with ‘‘The
individual and participating DIB
companies.’’
*
*
*
*
*
[FR Doc. 2015–12324 Filed 5–20–15; 8:45 am]
BILLING CODE 5001–06–P
DEFENSE NUCLEAR FACILITIES
SAFETY BOARD
Sunshine Act Notice
Defense Nuclear Facilities
Safety Board.
ACTION: Notice of public meeting.
AGENCY:
Pursuant to the provisions of
the Government in the Sunshine Act, 5
U.S.C. 552b, notice is hereby given of
the Defense Nuclear Facilities Safety
Board’s (Board) public business meeting
described below. The Board invites any
interested persons or groups to present
any comments, technical information, or
data concerning issues related to the
matters to be considered.
DATES: 9:00 a.m.–3:00 p.m., June 3,
2015.
SUMMARY:
Defense Nuclear Facilities
Safety Board, 625 Indiana Avenue NW.,
Room 352, Washington, DC 20004.
STATUS: Open. The Board has
determined that an open meeting
furthers the public interest underlying
the Board’s mission and the
Government in the Sunshine Act.
MATTERS TO BE CONSIDERED: The meeting
will proceed in accordance with the
meeting agenda, which is posted on the
Board’s public Web site at
www.dnfsb.gov. The Board is expected
to open the meeting with Board Member
statements. The Board will then hear
testimony from the three Office
Directors. First, the General Manager
will provide testimony on the existing
Board performance metrics. Next, the
Acting General Counsel will discuss
existing Board policies and their
underlying basis. Finally, the Technical
Director will examine the Board’s
technical organizational structure and
basis. The General Manager is then
expected to provide an overview of
planned responses to matters raised in
recent organizational assessments
conducted by outside entities. These
include assessments by LMI and by the
Nuclear Regulatory Commission Office
tkelley on DSK3SPTVN1PROD with NOTICES
ADDRESSES:
VerDate Sep<11>2014
20:28 May 20, 2015
Jkt 235001
of the Inspector General, which serves
as the Board’s inspector general. The
Board will then entertain comments, if
any, from the public. Following a lunch
break, the Board is then expected to
engage in deliberations in accordance
with the Board’s procedures concerning
meetings. The open meeting will
adjourn at 3:00 p.m.
FOR FURTHER INFORMATION CONTACT:
Mark Welch, General Manager, Defense
Nuclear Facilities Safety Board, 625
Indiana Avenue NW., Suite 700,
Washington, DC 20004–2901, (800) 788–
4016. This is a toll-free number.
SUPPLEMENTARY INFORMATION: Public
participation in the meeting is invited
from 11:45 a.m. to 12:30 p.m. Requests
to speak may be submitted in writing or
by telephone. The Board asks that
commenters describe the nature and
scope of their oral presentations. Those
who contact the Board prior to close of
business on June 2, 2015, will be
scheduled to speak. At the beginning of
the meeting, the Board will post a
schedule for speakers at the entrance to
the meeting room. Anyone who wishes
to comment or provide technical
information or data may do so in
writing, either in lieu of, or in addition
to, making an oral presentation.
Documents will be accepted at the
meeting. The meeting record will close
when the meeting is adjourned at 3:00
p.m. The meeting will be presented live
through Internet video streaming. A link
to the meeting will be available on the
Board’s Web site (www.dnfsb.gov). A
transcript of the meeting, along with a
DVD video recording, will be made
available by the Board for viewing on
the Board’s public Web site, and in the
reading room of the Board’s
Washington, DC office.
Date: May 18, 2015.
Jessie H. Roberson,
Vice Chairman.
[FR Doc. 2015–12393 Filed 5–19–15; 4:15 pm]
BILLING CODE 3670–01–P
DEPARTMENT OF EDUCATION
National Board for Education
Sciences; Announcement of an Open
Meeting
Institute of Education Sciences,
U.S. Department of Education.
ACTION: Announcement of an open
meeting.
AGENCY:
This notice sets forth the
schedule and proposed agenda of an
upcoming meeting of the National Board
for Education Sciences (NBES). The
notice also describes the functions of
SUMMARY:
PO 00000
Frm 00019
Fmt 4703
Sfmt 4703
29317
the Committee. Notice of this meeting is
required by Section 10(a)(2) of the
Federal Advisory Committee Act and is
intended to notify the public of their
opportunity to attend the meeting.
DATES: The NBES meeting will be held
on June 8, 2015, from 9:00 a.m. to 4:15
p.m. Eastern Standard Time.
ADDRESSES: 80 F Street NW., Large
Board Room, Washington, DC 20001.
FOR FURTHER INFORMATION CONTACT: Ellie
Pelaez, Designated Federal Official,
NBES, U.S. Department of Education,
555 New Jersey Avenue NW., Room 600
E, Washington, DC 20208; phone: (202)
219–0644; fax: (202) 219–1402; email:
Ellie.Pelaez@ed.gov.
SUPPLEMENTARY INFORMATION:
NBES’s Statutory Authority and
Function
The National Board for Education
Sciences is authorized by Section 116 of
the Education Sciences Reform Act of
2002 (ESRA), 20 U.S.C. 9516. The Board
advises the Director of the Institute of
Education Sciences (IES) on, among
other things, the establishment of
activities to be supported by the
Institute and the funding for
applications for grants, contracts, and
cooperative agreements for research
after the completion of peer review. The
Board also reviews and evaluates the
work of the Institute.
Meeting Agenda
On June 8, 2015, starting at 9:00 a.m.,
the Board meeting will commence and
members will approve the agenda. From
9:05 a.m. to 10:00 a.m., the Board will
hear presentations from the
Commissioners of the IES Centers for
Education Research, Special Education
Research, Education Evaluation and
Regional Assistance, and Education
Statistics. This session will be followed
by a question and answer period
regarding the Commissioners’ reports. A
break will take place from 10:00 a.m. to
10:15 a.m.
The Board meeting will resume from
10:15 a.m. to 12:00 p.m. when the Board
will discuss ‘‘Improving Education: The
Research Road Ahead.’’ Susanna Loeb,
Vice Chairperson of NBES, will provide
opening remarks followed by a panel
discussion with Anthony Bryk, NBES
member and President, Carnegie
Foundation for the Advancement of
Teaching; Tom Kane, Walter H. Gale
Professor of Education and Economics,
Harvard University; and James Kemple,
The Research Alliance for New York
City Schools. Roundtable discussion by
board members will take place after the
panel discussion. The meeting will
E:\FR\FM\21MYN1.SGM
21MYN1
Agencies
[Federal Register Volume 80, Number 98 (Thursday, May 21, 2015)]
[Notices]
[Pages 29315-29317]
From the Federal Register Online via the Government Publishing Office [www.gpo.gov]
[FR Doc No: 2015-12324]
-----------------------------------------------------------------------
DEPARTMENT OF DEFENSE
Office of the Secretary
[Docket ID DoD-2015-OS-0051]
Privacy Act of 1974; System of Records
AGENCY: Office of the Secretary of Defense, DoD.
ACTION: Notice to alter a System of Records.
-----------------------------------------------------------------------
SUMMARY: The Office of the Secretary of Defense proposes to alter a
system of records, DCIO 01, entitled ``Defense Industrial Base (DIB)
Cyber Security/Information Assurance Records'' to facilitate the
sharing of DIB cybersecurity threat information and best practices to
DIB companies to enhance and supplement DIB participant capabilities to
safeguard DoD information that resides on, or transits, DIB
unclassified information systems. When incident reports are received,
DoD Cyber Crime Center (DC3) personnel analyze the information reported
for cyber threats and vulnerabilities in order to develop response
measures as well as improve U.S. Government and DIB understanding of
advanced cyber threat activity. DoD may work with a DIB company on a
more detailed, digital forensics analysis or damage assessment, which
may include sharing of additional electronic media/files or information
regarding the incident or the affected systems, networks, or
information.
DATES: Comments will be accepted on or before June 22, 2015. This
proposed action will be effective the date following the end of the
comment period unless comments are received which result in a contrary
determination.
ADDRESSES: You may submit comments, identified by docket number and
title, by any of the following methods:
* Federal Rulemaking Portal: https://www.regulations.gov.
Follow the instructions for submitting comments.
* Mail: Department of Defense, Office of the Deputy Chief
Management Officer, Directorate of Oversight and Compliance, Regulatory
and Audit Matters Office, 9010 Defense Pentagon, Washington, DC 20301-
9010.
Instructions: All submissions received must include the agency name
and docket number for this Federal Register document. The general
policy for comments and other submissions from members of the public is
to make these submissions available for public viewing on the Internet
at https://www.regulations.gov as they are received without change,
including any personal identifiers or contact information.
FOR FURTHER INFORMATION CONTACT: Ms. Cindy Allard, Chief, OSD/JS
Privacy Office, Freedom of Information Directorate, Washington
Headquarters Service, 1155 Defense Pentagon, Washington, DC 20301-1155,
or by phone at (571) 372-0461.
SUPPLEMENTARY INFORMATION: The Office of the Secretary of Defense
notices for systems of records subject to the Privacy Act of 1974 (5
U.S.C. 552a), as amended, have been published in the Federal Register
and are available from the address in FOR FURTHER INFORMATION CONTACT
or at the Defense Privacy and Civil Liberties Division Web site at
https://dpcld.defense.gov/.
The proposed system report, as required by U.S.C. 552a(r) of the
Privacy Act of 1974, as amended, was submitted on May 15, 2015, to the
House Committee on Oversight and Government Reform, the Senate
Committee on Governmental Affairs, and the Office of Management and
Budget (OMB) pursuant to paragraph 4c of Appendix I to OMB Circular No.
A-130, ``Federal Agency Responsibilities for Maintaining Records About
Individuals,'' dated February 8, 1996 (February 20, 1996, 61 FR 6427).
Dated: May 18, 2015.
Aaron Siegel,
Alternate OSD Federal Register Liaison Officer, Department of Defense.
DCIO 01
Defense Industrial Base (DIB) Cyber Security/Information Assurance
Records (May 18, 2012, 77 FR 29616).
Changes:
[[Page 29316]]
* * * * *
System name:
Delete entry and replace with ``Defense Industrial Base (DIB)
Cybersecurity (CS) Activities Records.''
System location:
Delete entry and replace with ``Defense Industrial Base (DIB)
Cybersecurity Program, 6000 Defense Pentagon, ATTN: DIB CS Program,
Washington, DC 20301-6000.
DoD Cyber Crime Center, 911 Elkridge Landing Road, Linthicum, MD
21090-2991.''
* * * * *
Categories of records in the system:
Delete entry and replace with ``DIB company point of contact
information includes name, company name and mailing address, work
division/group, work email, and work telephone number.''
Authority for maintenance of the system:
Delete entry and replace with ``10 U.S.C. 2224, Defense Information
Assurance Program; 44 U.S.C. 3544, Federal Agency Responsibilities;
Public Law 113-58, National Defense Authorization Act for Fiscal Year
2015, Section 1632, Reporting on Cyber Incidents with Respect to
Networks and Information Systems of Operationally Critical Contractors
(10 U.S.C. Chapter 19, Cyber Matters); Presidential Policy Directive
PPD-21, Critical Infrastructure, Security and Resilience; DoD Directive
(DoDD) 3020.40, DoD Policy and Responsibilities for Critical
Infrastructure; DoDD 5505.13E, DoD Executive Agent (EA) for the DoD
Cyber Crime Center (DC3); DoD Manual 3020.45, Defense Critical
Infrastructure Program (DCIP): DoD Mission-Based Critical Asset
Identification Process (CAIP); and DoD Instruction 5205.13, Defense
Industrial Base (DIB) Cyber Security/Information Assurance (CS/IA)
Activities.''
Purpose(s):
Delete entry and replace with ``To facilitate the sharing of DIB
cybersecurity threat information and best practices to DIB companies to
enhance and supplement DIB participant capabilities to safeguard DoD
information that resides on, or transits, DIB unclassified information
systems. When incident reports are received, DoD Cyber Crime Center
(DC3) personnel analyze the information reported for cyber threats and
vulnerabilities in order to develop response measures as well as
improve U.S. Government and DIB understanding of advanced cyber threat
activity. DoD may work with a DIB company on a more detailed, digital
forensics analysis or damage assessment, which may include sharing of
additional electronic media/files or information regarding the incident
or the affected systems, networks, or information.''
Routine uses of records maintained in the system, including categories
of users and the purposes of such uses:
Delete entry and replace with ``In addition to the disclosures
generally permitted under 5 U.S.C. 552a(b) of the Privacy Act of 1974,
as amended, the records contained herein may specifically be disclosed
outside the DoD as a routine use pursuant to 5 U.S.C. 552a(b)(3) as
follows:
DIB company point of contact information may be provided to other
participating DIB companies to facilitate the sharing of information
and expertise related to the DIB CS Program including cyber threat
information and best practices, and mitigation strategies.
Law Enforcement Routine Use: If a system of records maintained by a
DoD Component to carry out its functions indicates a violation or
potential violation of law, whether civil, criminal, or regulatory in
nature, and whether arising by general statute or by regulation, rule,
or order issued pursuant thereto, the relevant records in the system of
records may be referred, as a routine use, to the agency concerned,
whether federal, state, local, or foreign, charged with the
responsibility of investigating or prosecuting such violation or
charged with enforcing or implementing the statute, rule, regulation,
or order issued pursuant thereto.
Counterintelligence Purpose Routine Use: A record from a system of
records maintained by a DoD Component may be disclosed as a routine use
outside the DoD or the U.S. Government for the purpose of
counterintelligence activities authorized by U.S. Law or Executive
Order or for the purpose of enforcing laws which protect the national
security of the United States.
Disclosure of Information to the National Archives and Records
Administration Routine Use: A record from a system of records
maintained by a DoD Component may be disclosed as a routine use to the
National Archives and Records Administration for the purpose of records
management inspections conducted under authority of 44 U.S.C. 2904 and
2906.
The DoD Blanket Routine Uses set forth at the beginning of the
Office of the Secretary of Defense/Joint Staff compilation of systems
of records notices may apply to this system. The complete list of the
DoD blanket routine uses can be found online at: https://dpcld.defense.gove/Privacy/SORNsIndex/BlanketRoutineUses.aspx
Any release of information contained in this system of records
outside the DoD will be compatible with the purpose(s) for which the
information is collected and maintained.''
* * * * *
Retrievability:
Delete entry and replace with ``DIB Company POC information is
retrieved primarily by company name and work division/group and
secondarily by individual POC name.
DIB cyber incident reports are primarily retrieved by incident
number but may also be retrieved by company name. They are not
retrieved by the individual name.''
Safeguards:
Delete entry and replace with ``Records are accessed by personnel
with security clearances who are properly screened, trained, under a
signed confidentiality agreement, and determined to have `need to
know'. Access to records requires DoD Common Access Card (CAC) and PIN.
Physical access controls include security guards, identification
badges, key cards, cipher locks, and combination locks.''
* * * * *
System manager(s) and address:
Delete entry and replace with ``Director, DIB Cybersecurity, 6000
Defense Pentagon, ATTN: DIB CS Program, Washington, DC 20301-6000.''
Notification procedure:
Delete entry and replace with ``Individuals seeking to determine
whether this system of records contains information on themselves
should address written inquiries to Director, DIB Cybersecurity Office,
6000 Defense Pentagon, ATTN: DIB CS Program, Washington, DC 20301-6000.
Signed, written requests should contain the individual's name, and
company name and work division/group.''
Record access procedures:
Delete entry and replace with ``Individuals seeking access to
information about themselves contained in this system of records should
address a written request to the Office of the Secretary of Defense/
Joint Staff (OSD/JS), Freedom of Information Act (FOIA) Requester
Service Center, 1155 Defense Pentagon, Washington, DC 20301-1155.
[[Page 29317]]
Signed, written requests should contain the individual's name,
company name and work division/group, and the name and number of this
system of records notice.''
* * * * *
Record source categories:
Delete entry and replace with ``The individual and participating
DIB companies.''
* * * * *
[FR Doc. 2015-12324 Filed 5-20-15; 8:45 am]
BILLING CODE 5001-06-P