Who We Are
The Office of Information Security (OIS), led by the FDA Chief Information Security Officer (CISO), directs and implements the FDA Cybersecurity, Counterintelligence, and Insider Threat Program to ensure security controls are appropriately applied to FDA systems for the protection of privacy and to ensure the confidentiality, integrity, and availability of information.
What We Do
OIS enforces cybersecurity standards and security control parameters that comply with OMB, Federal Information Security Modernization Act (FISMA), FedRAMP, HHS, and other federal government security requirements.
Our cybersecurity tools, capabilities, and personnel prevent millions of potential attacks on a monthly basis. In fact, we average over one billion attempts each month to penetrate our systems. Based on these risks, the FDA has aligned the counterintelligence, advanced forensics, insider threat, and technical support to law enforcement investigations and national security related activities under the FDA Chief Information Security Officer to address immediate cybersecurity threats, vulnerabilities and risks to our FDA global mission.
Provide near real-time cybersecurity capabilities and risk management methodologies to protect sensitive data and information systems in support of the U.S. Food and Drug Administration’s public health mission.
Provide a best-in-class, intelligence-driven cybersecurity program that directly supports the FDA’s mission to protect and promote U.S. public health.
Chief Information Security Officer
- Craig Taylor, FDA Chief Information Security Officer (CISO)