OPM's Personal Use of Government Office Equipment Policy
| 1.0 | Identification Data |
| 1.1 | BSP Number |
| 00012 | |
| 1.2 | BSP Title/Name |
| How OPM Developed its Policy on Personal Use of Government Office Equipment | |
| 1.3 | Version Number |
| 1 | |
| 1.4 | Adoption Date |
| 12/04/2000 | |
| 1.5 | Approving Authority |
| Security Practices Subcommittee (SPS) | |
| 1.6 | Responsible Organization |
| Office of Personnel Management (OPM), Office of the Chief Information Officer | |
| 1.7 | Level of BSP |
| Candidate | |
| 1.8 | Security Processes or other Framework(s) Supported |
| |
| 1.9 | Reserved |
| 1.10 | Points of Contact |
|
Government BSP Owner:
| |
| 2.0 | What This BSP Does |
| 2.1 | BSP's Purpose |
|
This policy establishes and communicates limitations on OPM employees' personal use of Government office equipment, particularly computer systems. The intent is to provide a professional and supportive work environment while meeting taxpayer expectations that tax dollars will be spent wisely. This policy also helps all OPM employees exercise their shared responsibility for protecting the security of this equipment with all other users. | |
| 2.2 | Requirements for this BSP |
|
Appendix III to OMB Circular No. A-130 - Security of Federal Automated Information Resources. A. Requirements. 3. Automated Information Security Programs. Agencies shall implement and maintain a program to assure that adequate security is provided for all agency information collected, processed, transmitted, stored, or disseminated in general support systems and major applications. Each agency's program shall implement policies, standards and procedures which are consistent with government-wide policies, standards, and procedures issued by the Office of Management and Budget, the Department of Commerce, the General Services Administration and the Office of Personnel Management (OPM). Different or more stringent requirements for securing national security information should be incorporated into agency programs as required by appropriate national security directives. a. Controls for general support systems. 2) System Security Plan. a) Rules of the System. Establish a set of rules of behavior concerning use of, security in, and the acceptable level of risk for, the system. The rules shall be based on the needs of the various users of the system. The security required by the rules shall be only as stringent as necessary to provide adequate security for information in the system. Such rules shall clearly delineate responsibilities and expected behavior of all individuals with access to the system. They shall also include appropriate limits on interconnections to other systems and shall define service provision and restoration priorities. Finally, they shall be clear about the consequences of behavior not consistent with the rules. | |
| 2.3 | Success Stories |
|
The following citation was transcribed from a signed document between OPM and the local chapter of the Agency's employees' union.
| |
| 3.0 | What This BSP Is |
| 3.1 | Description of BSP |
|
Output: U.S. Office of Personnel Management Policy on Personal Use of Government Office Equipment |
| 3.2 | Relationship to Other BSPs | |
| Relationships to other BSPs will be identified as additional BSPs are documented. | ||
| 4.0 | How To Use This BSP | |
| 4.1 | Implementation Guidance | |
| This policy applies only to employees of the Office of Personnel Management; it is not a Governmentwide policy. | ||
| 4.2 | Implementation Resource Estimates | |
| Not applicable | ||
| 4.3 | Performance Goals and Indicators (Metrics) | |
| Quantity and type of violations | ||
| 4.4 | Tools | |
| Not applicable | ||
| 4.5 | Training Materials | |
| Not applicable | ||
| Appendices | ||
| A | Executive Overview and Briefing | |
| Not applicable | ||
| B | Reference List | |
| 5 U.S.C. ' 1103(a)(3) | Departmental regulations | |
| 5 C.F.R. ' 2635 | Standards of ethical conduct for employees of the executive branch | |
| 41 C.F.R. ' 101-35.201 | Authorized use of long distance telephone services | |
| E.O. 12674/12731 | Principles of ethical conduct for Government officers and employees | |
| E.O. 13011 | Federal Information Technology | |
| C | Procurement Information | |
| Not applicable | ||
| D | Evaluation Information | |
| E | Recommended Changes | |
| F | Glossary | |
|
Government office equipment includes, but is not limited to: personal computers, related equipment and software, Internet services, email, library resources, telephones, facsimile machines, photocopiers and office supplies. Minimal additional expense means the expense incurred when the Government is already providing equipment, supplies or services and you use only limited additional amounts of electricity, ink, toner or paper. Wear and tear from normal use is also considered minimal additional expense. Non-work time means the time when you are not performing an activity for the benefit of the agency and under the control or direction of the agency. Examples of non-work time include off-duty hours such as lunch periods, authorized breaks, before or after a workday, weekends or holidays, but only if your duty station would normally be available to you at such times. Personal use means uses other than official Government business. Privilege means that you have no inherent right to personal use of Government office equipment. | ||