The Chief Information Officers Council has released an updated version of the federal enterprise architecture security and privacy profile, modified based on validation exercises and an assessment of related documents since the initial versions were released in July 2004 and July 2005.
This voluntary guidance provides best practices and recommendations for incorporating security and privacy into an organization’s EA and making sure security and privacy requirements make it into an agency’s strategic planning and investment decisions.
The CIO Council said the guidance could help program executives choose solutions for meeting requirements and for improving current capabilities, leveraging standards and services that are common to the enterprise or the federal government as appropriate.
The document is available here: www.cio.gov
