COMDTINST 5230.62
c. The Web Program Manager shall:
(1)
Chair the WAB.
(2)
Implement this Instruction and other guidance related to Web management.
(3)
Advise the CIO on matters relating to management of the Web.
d. The Coast Guard Information Systems Security Program Manager, on the CIO's staff, shall:
(1)
Provide policy guidance regarding information and information system security for the
Web.
(2)
Review and approve the Information System Security Plans (ISSPs) for Web systems.
e. Governmental and Public Affairs, Commandant (G-I), shall:
(1)
Have final authority over content published to the Internet.
(2)
Provide guidance on proper Internet and Intranet content.
f. Director of Command, Control, Communications, and Computers (Director of C4), Commandant
(G-SC), shall, via the support infrastructure:
(1)
Manage the Coast Guard's Internet and Intranet connectivity and ensure security of the
Coast Guard data network.
(2)
Conduct audits of Web content for operations security or information assurance violations,
and advise the Web Program Manager of action to be taken.
(3)
Protect Coast Guard systems from external intrusion/hacking, respond to computer security
incidents, and advise the Web Program Manager of recommended future action.
g. All Commands hosting web servers shall:
(1)
Provide access to Web content in accordance with this Instruction.
(2)
Ensure that Coast Guard Web information and associated systems adhere to policies, laws,
regulations, and guidance regarding security.
(3)
Ensure security related system patches and upgrades are performed in a timely matter.
(4)
Ensure proper security controls are in place to prevent unauthorized modification of
information on web servers.
h. All commands maintaining a Web presence shall:
(1)
Ensure that Web site initiatives within their respective areas of responsibility adhere to this
Instruction and other laws, regulations, and guidance including those regarding
accessibility, privacy, and security.
(2)
Make every effort to minimize the use of bandwidth by their Web implementations.
(3)
Establish a formal process for publishing information to the Web that accommodates the
requirements of this Instruction and applicable references.
3
Previous Page
