OMB.report

Federal forms, ICRs, and supporting documents

Information Collection Request

DoD's Defense Industrial Base (DIB) Cybersecurity (CS) Activities Cyber Incident Reporting

ICR 201609-0704-003 · OMB 0704-0489 · Historical Active

Forms and Documents
DocumentTypeStatusAvailability
0704_0489 Updated Privacy Page and ADN.docx Supplementary Document Uploaded 2016-09-23 Repair queued
SORN DCIO 01_0704-0489.pdf Supplementary Document Uploaded 2016-09-22 Repair queued
0704-0489 Supporting Statement Part A.doc Supporting Statement A Uploaded 2016-09-22 Available
IC Document Collections
IC IDCollectionTypeStatusForm
200868 DoD's Defense Industrial Base (DIB) Cybersecurity (CS) Activities Cyber Incident Reporting Other-Screenshots of Online form and Instruction Modified
ICR Details
0704-0489 201609-0704-003
Historical Active 201507-0704-001
DOD/DODDEP
DoD's Defense Industrial Base (DIB) Cybersecurity (CS) Activities Cyber Incident Reporting
Revision of a currently approved collection   No
Regular
Approved without change 10/25/2016
Retrieve Notice of Action (NOA) 09/23/2016
  Inventory as of this Action Requested Previously Approved
10/31/2019 36 Months From Approved 10/31/2016
42,500 0 50,000
85,000 0 250,000
3,685,600 0 10,255,000
This information collection supports voluntary cyber incident reporting from DoD contractors to DoD in accordance with 32 Code of Federal Regulations (CFR) part 236, “Department of Defense (DoD)-Defense Industrial Base (DIB) Cybersecurity (CS) Activities,” which authorizes the DIB CS program.
US Code: 10 USC 2224 Name of Law: 32 CFR 236 - DEPARTMENT OF DEFENSE (DOD)-DEFENSE INDUSTRIAL BASE (DIB) VOLUNTARY CYBER SECURITY AND
  
US Code: 10 USC 2224 Name of Law: 32 CFR 236 - DEPARTMENT OF DEFENSE (DOD)-DEFENSE INDUSTRIAL BASE (DIB) VOLUNTARY CYBER SECURITY AND
Not associated with rulemaking
  81 FR 25390 04/28/2016
81 FR 65347 09/22/2016
No
1
IC Title Form No. Form Name
DoD's Defense Industrial Base (DIB) Cybersecurity (CS) Activities Cyber Incident Reporting
  Total Approved Previously Approved Change Due to New Statute Change Due to Agency Discretion Change Due to Adjustment in Estimate Change Due to Potential Violation of the PRA
Annual Number of Responses 42,500 50,000 -7,500 0 0 0
Annual Time Burden (Hours) 85,000 250,000 -165,000 0 0 0
Annual Cost Burden (Dollars) 3,685,600 10,255,000 -6,569,400 0 0 0
No
No
A change in burden estimates is based on lessons learned for contractor cyber incident reporting, and reflects that statutory requirements mandating cyber incident reporting are covered under OMB control number 0704-0479, “Defense Federal Acquisition Regulation Supplement (DFARS) Business Systems-Definition and Administration; DFARS 234, Earned Value Management Systems.”
$8,653,850
No
No
No
No
No
Uncollected
Frederick Licari 571 372-0493 [email protected]
  No
On behalf of this Federal agency, I certify that the collection of information encompassed by this request complies with 5 CFR 1320.9 and the related provisions of 5 CFR 1320.8(b)(3).
The following is a summary of the topics, regarding the proposed collection of information, that the certification covers:
 
 
 
 
 
 
 
    (i) Why the information is being collected;
    (ii) Use of information;
    (iii) Burden estimate;
    (iv) Nature of response (voluntary, required for a benefit, or mandatory);
    (v) Nature and extent of confidentiality; and
    (vi) Need to display currently valid OMB control number;
 
 
 
If you are unable to certify compliance with any of these provisions, identify the item by leaving the box unchecked and explain the reason in the Supporting Statement.
09/23/2016