Binding Operational Directives
The Department of Homeland Security (DHS) develops and oversees the implementation of binding operational directives pursuant to the Federal Information Security Modernization Act of 2014 (FISMA).
A binding operational directive is a compulsory direction to federal executive branch departments and agencies for purposes of safeguarding federal information and information systems from a known or reasonably suspected information security threat, vulnerability, or risk. FISMA requires federal agencies to comply with DHS-developed directives.
Binding operational directives do not apply to statutorily defined “National Security Systems” nor to certain systems operated by the Department of Defense or the Intelligence Community.
- 18-02 - Securing High Value Assets
- 18-01 - Enhance Email and Web Security
- 17-01 - Removal of Kaspersky-branded Products
- 16-03 - 2016 Agency Cybersecurity Reporting Requirements
- 16-02 - Threat to Network Infrastructure Devices
- 16-01 - Securing High Value Assets (Revoked)
- 15-01 - Critical Vulnerability Mitigation