The overall objective of an information security program is to protect the information and systems that support the operations and assets of the agency.

To safeguard each system at HHS is to ensure that the following security objectives can be realized for their information:

– Confidentiality - Protecting information from unauthorized access and disclosure.

– Integrity - Assuring the reliability and accuracy of information and IT resources by guarding against unauthorized information modification or destruction.

– Availability - Defending information systems and resources to ensure timely and reliable access and use of information.