On March 5, 2002, U.S. Representative Tom Davis, R-VA, introduced the Federal Information Security Management Act to improve the United States’ information security and to develop information security risk management standards. In 2002, the Federal Information Security Management Act was enacted in the United States, giving the Office of Management and Budget (OMB) the mandate to coordinate information security standards and guidelines produced by civilian-based federal agencies.
Wilson, C. CRS Report for Congress: Computer Attack and Cyberterrorism: Vulnerabilities and Policy Issues for Congress. [Online, October 17, 2003.] CRS Report Website. http://www.fas.org/irp/crs/RL32114.pdf.