3.4 DHS Binding Operational Directive (BOD)
A BOD is a compulsory direction to executive branch departments and agencies for purposes of safeguarding federal information and information systems. (44 U.S.C. § 3552(b)(l). Title 44 Public Printing and Documents.) Federal agencies are required to comply with these DHS-developed directives. The Department of Homeland Security (DHS) has the statutory responsibility, in consultation with OMB, to administer the implementation of agency information security policies and practices for information systems, which includes assisting agencies and providing certain government-wide protections. A BOD is a compulsory direction to an agency for purposes of safeguarding Federal information and information systems from a known or reasonably suspected information security threat, vulnerability, or risk in accordance with policies, principles, standards, and guidelines issued by the Director of OMB. (DHS. Binding Operational Directive 18-01. Enhance Email and Web Security. 10/16/2017.) As part of that responsibility, DHS is authorized to develop and oversee the implementation of binding operational directives to agencies to implement the policies, principles, standards, and guidance developed by the Director of OMB and requirements of FISMA.
See list of DHS BODs at DHS. Binding Operational Directives
Latest News
AI Transparency Listening Session with the White House Office of Management and Budget
The White House Office of Management and Budget (OMB) is leading a series of listening sessions to learn more from industry about their approaches to AI transparency and auditable risk management.
AI in Action: 5 Essential Findings from the 2024 Federal AI Use Case Inventory
This year, agencies publicly reported more than 1,700 ways they are using Artificial Intelligence (AI) to advance their missions and deliver better experiences to the public.
CISO Council and CDO Council Release Joint Guide on Federal Zero Trust Data Security
Today, the CISO Council and CDO Council released the Federal Zero Trust (ZT) Data Security Guide, a first-of-its-kind document and key deliverable of OMB M-22-09, Moving the U.S. Government Towards Zero Trust Cybersecurity Principles. M-22-09 charged the Federal CDO Council and Federal CISO Council to convene a cross-agency working group of data and security experts to develop a data security guide for Federal agencies.