The Information Security and Privacy Advisory Board (ISPAB) was originally created by the Computer Security Act of 1987 (P.L. 100-235) as the Computer System Security and Privacy Advisory Board. As a result of Public Law 107-347, The E-Government Act of 2002, Title III, The Federal Information Security Management Act of 2002, the Board's name was changed and its mandate was amended.
The Board's authority does not extend to private sector systems or federal systems which process classified information.
The membership of the Board consists of twelve members and a Chairperson. The Director of NIST approves membership appointments and appoints the Chairperson. The Board meets quarterly throughout the year and all meetings are open to the public.
One of the major objectives and responsibilities of the Information Security and Privacy Advisory Board is to identify emerging managerial, technical, administrative, and physical safeguard issues relative to information security and privacy.
The Board will function solely as an advisory body, in accordance with the provisions of the Federal Advisory Committee Act.
Lead Organizational Unit:itl
Related Programs and Projects:
For more information regarding the Information Security and Privacy Advisory Board (ISPAB), please visit the Computer Security Resource Center (CSRC).
100 Bureau Drive