Executives -- Senior managers who set
agency computer security policy, assign responsibility
for implementing policy, determine acceptable risk
levels, and provide the resources for the computer
security program.
Program and
Functional Managers -- Managers and supervisors who have
a program or functional responsibility that is not in the
area of computer security, but have primary
responsibility for the security of their data.
IRM,
Security, and Audit Personnel -- Involved with the daily
management of DHHS information resources. members of this
group include personnel from the DHHS Office of Inspector
General, IRM staff, and AIS Security Officers at various
organizational levels.
ADP Management, Operations, and Programming Staff --
Involved with the daily management and operations of the
DHHS' automated data processing services. this group
includes AIS Facility Managers, AIS Managers and
Applications Systems managers, Data File Managers, and
other ADP related positions that deal directly with DHHS
ADP operations.
End users -- Any employees who have access to a DHHS
computer system that processes sensitive information or
that is critical to DHHS operations. (Most
employees will fall into this category)
Contractors -- Non-Federal personnel who are performing a
service for the Federal government under the terms and
conditions of a contractual agreement.