< Previous | Contents | Next >


Information Security Program Management

Information Security Program Objectives

The overall objective of an information security program is to protect the information and systems that support the operations and assets of the agency.

To safeguard each system at HHS is to ensure that the following security objectives can be realized for their information:

Confidentiality - Protecting information from unauthorized access and disclosure.

Integrity - Assuring the reliability and accuracy of information and IT resources by guarding against unauthorized information modification or destruction.

Availability - Defending information systems and resources to ensure timely and reliable access and use of information.

Diagram representing Confidentiality, Availability, and Integrity.