Agency Responsibilities

The Agency Responsibilities section of the Federal Information Security Modernization Act of 2014 specifies that each federal agency must establish and maintain an agency-wide information security program, assess and manage risks to their information systems, and submit annual reports on compliance and performance to the Office of Management and Budget.