[Code of Federal Regulations]
[Title 32, Volume 1, Parts 1 to 190]
[Revised as of July 1, 1998]
From the U.S. Government Printing Office via GPO Access
[CITE: 32CFR159a.91]

[Page 860-861]
 
                       TITLE 32--NATIONAL DEFENSE
 
              CHAPTER I--OFFICE OF THE SECRETARY OF DEFENSE
 
PART 159a--INFORMATION SECURITY PROGRAM REGULATION--Table of Contents
 
                      Subpart N--Program Management
 
Sec. 159a.91  Executive branch oversight and policy direction.


    (a) National Security Council. Pursuant to the provisions of E.O. 
12356, the

[[Page 861]]

NSC shall provide overall policy direction for the Information Security 
Program.
    (b) Administrator of General Services. The Administrator of General 
Services is responsible for implementing and monitoring the Information 
Security Program established under E.O. 12356. In accordance with E.O. 
12356, the Administrator delegates the implementation and monitorship 
functions of the Program to the Director of the ISOO.
    (c) Information Security Oversight Office--(1) Composition. The ISOO 
has a full-time director appointed by the Administrator of General 
Services with approval of the President. The Director has the authority 
to appoint a staff for the office.
    (2) Functions. The Director of the ISOO is charged with the 
following principal functions that pertain to the Department of Defense:
    (i) Oversee DoD actions to ensure compliance with E.O. 12356 
implementing directives, for example, the ISOO Directive No. 1 and this 
part;
    (ii) Consider and take action on complaints and suggestions from 
persons within or outside the government with respect to the 
administration of the Information Security Program;
    (iii) Report annually to the President through the NSC on the 
implementation of E.O. 12356;
    (iv) Review this Regulation and DoD guidelines for systematic 
declassification review; and
    (v) Conduct on-site reviews of the Information Security Program of 
each DoD Component that generates or handles classified information.
    (3) Information Requests. The Director of the ISOO is authorized to 
request information or material concerning the Department of Defense, as 
needed by the ISOO in carrying out its functions.
    (4) Coordination. Heads of DoD Components shall ensure that any 
significant requirements levied directly on the Component by the ISOO 
are brought to the attention of the Director of Security Plans and 
Programs, ODUSD(P).