DoD's Defense Industrial Base (DIB) Cybersecurity (CS) Activities Cyber Incident Reporting

ICR 201909-0704-009

OMB: 0704-0489

Federal Form Document

⚠️ Notice: This information collection may be outdated. More recent filings for OMB 0704-0489 can be found here:

2022-10-27 - Extension without change of a currently approved collection

Forms and Documents

Document Name	Status
0704-0489_SSA_9.30.2019.docx Supporting Statement A	2019-09-30

IC Document Collections

IC ID	Document Title	Status
200868	DoD's Defense Industrial Base (DIB) Cybersecurity (CS) Activities Cyber Incident Reporting Other-Screenshots of Online form and Instruction	Modified

ICR Details

OMB Control No: 0704-0489	ICR Reference No: 201909-0704-009
Status: Active	Previous ICR Reference No: 201609-0704-003
Agency/Subagency: DOD/DODDEP	Agency Tracking No:
Title: DoD's Defense Industrial Base (DIB) Cybersecurity (CS) Activities Cyber Incident Reporting
Type of Information Collection: Extension without change of a currently approved collection	Common Form ICR: No
Type of Review Request: Regular
OIRA Conclusion Action: Approved without change	Conclusion Date: 10/31/2019
Retrieve Notice of Action (NOA)	Date Received in OIRA: 09/30/2019
Terms of Clearance:

	Inventory as of this Action	Requested	Previously Approved
Expiration Date	10/31/2022	36 Months From Approved	10/31/2019
Responses	42,500	0	42,500
Time Burden (Hours)	85,000	0	85,000
Cost Burden (Dollars)	3,690,700	0	3,685,600

Abstract: This information collection supports voluntary cyber incident reporting from DoD contractors to DoD in accordance with 32 Code of Federal Regulations (CFR) part 236, “Department of Defense (DoD)-Defense Industrial Base (DIB) Cybersecurity (CS) Activities,” which authorizes the DIB CS program.

Authorizing Statute(s): US Code: 10 USC 2224 Name of Law: 32 CFR 236 - DEPARTMENT OF DEFENSE (DOD)-DEFENSE INDUSTRIAL BASE (DIB) VOLUNTARY CYBER SECURITY AND

Citations for New Statutory Requirements: None

Associated Rulemaking Information
RIN:	Stage of Rulemaking:	Federal Register Citation:	Date:
	Not associated with rulemaking

Federal Register Notices & Comments
60-day Notice:	Federal Register Citation:	Citation Date:
	84 FR 32429	07/08/2019
30-day Notice:	Federal Register Citation:	Citation Date:
	84 FR 51527	09/30/2019
Did the Agency receive public comments on this ICR? No

Number of Information Collection (IC) in this ICR: 1

IC Title	Form No.	Form Name
DoD's Defense Industrial Base (DIB) Cybersecurity (CS) Activities Cyber Incident Reporting

ICR Summary of Burden

	Total Approved	Previously Approved	Change Due to Agency Discretion
Annual Number of Responses	42,500	42,500	0
Annual Time Burden (Hours)	85,000	85,000	0
Annual Cost Burden (Dollars)	3,690,700	3,685,600	5,100

Burden increases because of Program Change due to Agency Discretion: No

Burden Increase Due to:

Burden decreases because of Program Change due to Agency Discretion: No

Burden Reduction Due to:

Short Statement:

Annual Cost to Federal Government: $8,790,700

Does this IC contain surveys, censuses, or employ statistical methods? No

Does this ICR request any personally identifiable information (see OMB Circular No. A-130 for an explanation of this term)? Please consult with your agency's privacy program when making this determination. Yes

Does this ICR include a form that requires a Privacy Act Statement (see 5 U.S.C. §552a(e)(3))? Please consult with your agency's privacy program when making this determination. Yes

Is this ICR related to the Affordable Care Act [Pub. L. 111-148 & 111-152]? No

Is this ICR related to the Dodd-Frank Wall Street Reform and Consumer Protection Act, [Pub. L. 111-203]? No

Is this ICR related to the American Recovery and Reinvestment Act of 2009 (ARRA)? No

Is this ICR related to the Pandemic Response? Uncollected

Agency Contact: Reginald Lucas 571 372-0403 [email protected]

Common Form ICR: No