Skip Navigation

HHS OCIO Policies, Standards and Charters (Historical)

Historical Policies, Standards, and Charters - Categories

Back to Current Policies, Standards, Charters


Policy is defined as the "what" and the "when" whereas Procedure is defined as the "how".

Oversight groups (the President; Congress; Office of Management and Budget (OMB); General Services Agency (GSA); Office of Personnel Management (OPM); etc.) set the standards, the goal, the expectations that all Cabinet-Level Departments and their equivalents are to meet.

The delta between where a Department is from that oversight-set goal, that expectation; that is the Department's Policy on "what" and "when" activities must occur in order to achieve progress towards that set that goal.


HISTORICAL POLICIES

Description

Number

Date Issued

HTML Document

Capital Planning and Investment Control [5 Policies]

HHS-OCIO Pilot Policy for Information Technology Investment
Performance Baseline Management - Superseded and made obsolete by Policy HHS-OCIO-2010-0007
2009-000511/03/2009HTML

HHS-OCIO Policy for IT Earned Value Management

-Superseded and made obsolete by Policy 2009.0005

See Procedures Section for EVM Procedures Document

2007-0001.00106/11/2007HTML

HHS IRM Policy for Conducting Information Technology Alternatives Analysis – superseded and obsoleted by Policy 2003-0002

2000-0002

01/08/2001

HTML

HHS IRM Policy for Capital Planning and Investment Control – superseded and obsoleted by Policy 2005-0005.001

2000-0001

01/08/2001

HTML

HHS IRM Guidelines for Capital Planning and Investment Control – superseded and obsoleted by Policy 2005-0005.001

2000-0001-GD

01/08/2001

HTML

HHS-OCIO Policy for IT Earned Value Management – superseded and obsoleted by Policy 2007-00012005-0004.00112/30/2005HTML 
HHS Policy for IT Capital Planning and Investment Control (CPIC) - superseded and obsoleted by Policy 2010-00022005-0005.00112/30/2005 HTML

Enterprise Architecture [2 Policies]

HHS-OCIO IT Policy for Enterprise Architecture (EA) - superceded and obsoleted by Policy 2008-0003.0012005-0003.00101/10/2006HTML

HHS-OCIO policy for Networx Program Designated Agency Representatives superseded and made obsolete by Policy 2010-0005

 

 

 

Information Collection

    

OCIO Policy Development and Review Process [2 Policies]

HHS IRM Policy for Personal Use Of Information Technology Resources – superseded and obsoleted by Policy 2006-0001

2004-0001

11/23/2004

HTML

Personal Use Of Information Technology Resources – superseded and obsoleted by Policy 2004-0001

2000-0003

01/08/2001

HTML

IT Security and Privacy [4 Policy]

HHS IRM Usage of Persistent Cookies - obsoleted by Implementation of OMB Memoranda (M)-10-22 and OMB M-10-232000-00091/08/2001HTML
HHS IRM Information Security Program Policy2004-0002.00112/15/2004HTML
HHS Policy for Responding to Breaches of Personally Identifiable Information (PII) – superseded and obsoleted by Policy 2008-0001.0032008-0001.00204/15/2008HTML
HHS - OCIO Policy for Information Systems Security and Privacy - obsoleted and superseded by Policy for Information Systems Security and Privacy 2010-00062009-000306/25/2009HTML
HHS IRM Policy for Establishing an Incident Response Capability -obsoleted and superseded by Policy for IT Security and Privacy Incident Reporting and Response 2010-00042000-000601/08/2001HTML
HHS - OCIO Policy for Information Systems Security and Privacy obsoleted and superseded by HHS - OCIO Policy for Information Systems Security and Privacy 2011-000320010-000609/22/2010HTML

Records Management [3 Policies]

HHS Policy for Electronic Records Management - superceded and obsoleted by Policy 2007-0004.001

2005-0001

09/15/2005

HTML

HHS Policy for Records Management - superceded and obsoleted by Policy 2007-0004.0012005-0002.00209/15/2005HTML
HHS Policy for Records Management Employee Departures - superceded and obsoleted by Policy 2007-0004.0012007-0003.00209/24/2007HTML

Section 508

Web Policies [1 Policy]

Domain Names – superseded and obsoleted by Policy WEB-2005-01

2000-0008

01/08/2001

HTML

 

HISTORICAL PROCEDURES AND APPENDICES

Description

Number

Date Issued

HTML Document

Capital Planning and Investment Control

 

 

 

 

Earned Value Management

 

 

 

 
Information Quality Guidelines

 

HISTORICAL STANDARDS [1 Total]

Description

Number

Date Issued

HTML Document

Records Management
    
IT Security and Privacy [1 Policy]
HHS Encryption Standard for Mobile Devices and Portable Media2007-0001.001S08/21/2007HTML
HHS Rules of Behavior (For Use of Technology Resources and Information)2008-0001.003S02/12/2008HTML
HHS Standard for Plan of Action and Milestones superceded and obsoleted by Standard 2011-0010.001S2008-0005.001S12/23/2008HTML

 

HISTORICAL CHARTERS [2 Total]

Description

Number

Date Issued

HTML Document

Enterprise Architecture [1 Charter]

 Department of Health and Human Services Chief Technology Officer (CTO) Council Charter

2009-0001.001C 

 11/18/2009

 HTML
Records Management
    
IT Security and Privacy [1 Charter]
Personally Identifiable Information (PII) Breach Response Team (BRT) Charter2008.0001.002C04/15/2008HTML