OMB M-06-16

OMB M-06-16 Compliance

What is OMB M-06-16?

OMB M-06-16 is a memorandum issued by the United States Office of Management and Budget (OMB) outlining the recommended actions for all federal departments and agencies to properly safeguard information assets. It specifically directs all federal agencies and departments to "encrypt all data on mobile computers/devices..."

The recommendations within OMB M-06-16 are in addition to the recommendations supplied by the National Institute of Standards and Technology (NIST) for the protection of remote information. Read more about OMB M-06-16 by downloading the document found here: http://www.whitehouse.gov/OMB/memoranda/fy2006/m06-19.pdf

How does OMB M-06-16 affect my organization?

OMB M-06-16 requires all federal government agencies and departments to secure sensitive information that is accessed remotely or stored off-site. This includes information that is physically transported outside of an agency’s perimeter, including information transported on removable media (e.g., CDs, DVDs, flash drives) and portable mobile devices (e.g., laptops). OMB M-06-16 also applies to sensitive information shared with outside organizations.

Therefore, if you are an agency or department that handles any type of sensitive information, such as Personally Identifiable Information (PII) or Personal Health Information (PHI), you need to ensure your method of protecting that information meets OMB M-06-16 compliance requirements.

How does SecureZIP help meet OMB M-06-16 compliance requirements?

SecureZIP by PKWARE fully addresses the recommendations outlined in OMB M-06-16 by strongly encrypting data to ensure it remains protected at its origin or destination, both in movement or storage. Because SecureZIP encrypts the data itself rather than the storage device, it remains protected even if placed on removable media that is lost or stolen during transit.

Customer Success Story: OMB M-06-16 Compliance Case Study

The Centers for Medicare & Medicaid Services (CMS) is using SecureZIP PartnerLink not only to meet OMB M-06-16 and FIPS 140-2 compliance requirements, but also to securely exchange sensitive information with hundreds of external partners, including other federal/state/local government agencies, research labs, universities, and large corporations. To learn more about how CMS is leveraging SecureZIP PartnerLink, please download the Gartner Case Study: CMS Data-Sharing Project Highlights the Benefits of a Multi-platform Approach.

In addition to meeting the recommendations outlined in OMB M-06-16, SecureZIP helps solve several other data security issues that government agencies are facing. To learn more about how SecureZIP can help solve specific government data security issues and to access case studies and other resources, click here.