[Federal Register Volume 73, Number 113 (Wednesday, June 11, 2008)]
[Notices]
[Pages 33101-33102]
From the Federal Register Online via the Government Publishing Office [www.gpo.gov]
[FR Doc No: E8-13101]
=======================================================================
-----------------------------------------------------------------------
DEPARTMENT OF HOMELAND SECURITY
National Protection and Programs Directorate; Submission for
Review: US-CERT Incident Reporting 1670-NEW
AGENCY: National Protection and Programs Directorate, National Cyber
Security Division, DHS.
ACTION: 60-Day Notice and request for comments.
-----------------------------------------------------------------------
SUMMARY: The Department of Homeland Security (DHS) invites the general
public and other federal agencies the opportunity to comment on new
information collection request 1670-NEW, US-CERT Incident Reporting. As
required by the Paperwork Reduction Act of 1995 (Pub. L. 104-13, 44
U.S.C. chapter 35), as amended by the Clinger-Cohen Act (Pub. L. 104-
106), DHS is soliciting comments for this collection.
DATES: Comments are encouraged and will be accepted until August 11,
2008. This process is conducted in accordance with 5 CFR 1320.1.
ADDRESSES: Interested persons are invited to submit written comments on
the proposed information collection to Chief of Information Services,
US-CERT Security Operations Center, Mail Stop 8500, 245 Murray Lane,
SW., Building 410, Washington, DC 20528, Fax 703-235-5042, or e-mail
cert.gov">info@us-cert.gov.
FOR FURTHER INFORMATION CONTACT: Chief of Information Services, US-CERT
Security Operations Center, Mail Stop 8500, 245 Murray Lane, SW.,
Building 410, Washington, DC 20528, Fax 703-235-5042, or e-mail
cert.gov">info@us-cert.gov.
SUPPLEMENTARY INFORMATION: The Office of Management and Budget is
particularly interested in comments that:
1. Evaluate whether the proposed collection of information is
necessary for the proper performance of the functions of the agency,
including whether the information will have practical utility;
2. Evaluate the accuracy of the agency's estimate of the burden of
the proposed collection of information, including the validity of the
methodology and assumptions used;
3. Enhance the quality, utility, and clarity of the information to
be collected; and
4. Minimize the burden of the collection of information on those
who are to respond, including through the use of appropriate automated,
electronic, mechanical, or other technological collection techniques or
other forms of information technology, e.g., permitting electronic
submissions of responses.
Analysis
Agency: Department of Homeland Security, National Protection and
Programs Directorate, National Cyber Security Division.
Title: US-CERT Incident Reporting.
OMB Number: 1670-NEW.
Frequency: Once.
Affected Public: Federal, State, Local, Tribal, Private Sector.
Number of Respondents: 6000 per year.
Estimated Time per Respondent: 20 minutes.
Total Burden Hours: 2000 hours.
Total Burden Cost (capital/startup): None.
Total Burden Cost (operating/maintaining): None.
Description: The Federal Information Security Management Act of
2002 requires all federal agencies to report security incidents to a
federal incident response center, designated as the United States
Computer Emergency Readiness Team (US-CERT). US-CERT has created a web-
based Incident Reporting Form for all federal agencies,
[[Page 33102]]
organizations, private and commercial companies, and individuals to
submit incidents to US-CERT's security operations center. In July of
2006, OMB issued Memo M06-19 revising reporting procedures to require
all federal agencies to report all incidents involving personally
identifiable information (PII) to US-CERT within one hour of
discovering the incident.
Dated: June 3, 2008.
Matt Coose,
Acting Chief Information Officer, National Protection and Programs
Directorate, Department of Homeland Security.
[FR Doc. E8-13101 Filed 6-10-08; 8:45 am]
BILLING CODE 4410-10-P