Skip to main content
U.S. flag

An official website of the United States government

Dot gov

The .gov means it’s official.
Federal Government websites often end in .gov or .mil. Before sharing sensitive information, make sure you’re on a Federal Government site.

Https

The site is secure.
The https:// ensures that you are connecting to the official website and that any information you provide is encrypted and transmitted securely.

FICAM Policy Matrix Map

The policy map below presents a visual overview of the laws, policies and standards relevant to FICAM. The documents are organized according to the government body that produced it, and the relationships between the documents are illustrated by arrows connecting them.

Click on a policy on the map to view its associated document in a new window.

Back to FICAM Policy Matrix

Executive Orders and Directives Act of Congress OMB Circulars and Memoranda OPM Memoranda NIST Technical Standards DOD Guidance NSA Guidance Jointly signed by OMB, DNI, and OPM ISC Standards Privacy Act of 1974 Federal Cybersecurity Requirements Government Paperwork Elimination Act E-SIGN Act of 2000 FITARA 2017 FISMA 2014 Congress OMB NIST DOD NSA FedRAMP ISC DHS CISA FPKI PolicyAuthority PACSmod WG White House DNI OPM USDS (under the White House) GSA ICAMSC E.O. 13681 E.O. 14028 E.O. 13556 E.O. 13286 E.O. 13467 HSPD-12 M-19-03 M-19-16 M-19-17 M-19-19 M-22-09 M-15-13 M-05-24 5 CFR 731 SpringerMemo CredentialingStandardsMemo 2020 OMB Circular A-130 OMB Circular A-108 Guidance on Executive Branch-Wide Requirements for Issuing Personal Verification (PIV) Credentials and Suspension Mechanism HSPD-12/PIVSuspension andRevocation FAQ ClearanceDecision-Making Guide Federal Common Policy Federal BridgeCertificate Policy NIST RMF SOFA-B SP 1800-13 SP 1800-207 NIST Privacy Framework SP 800-53A SP 800-53 PIV Privileged User Guide SP 800-37 SP 800-162 SP 800-122 SP 800-205 SP 800-63 SP 800-63A SP 800-63B SP 800-63C NIST IAMRoadmap E-PACS RecommendedProcurement Languagefor RFPs NIST Inter-Agency Reports NISTIR 7966 NISTIR 8149 NISTIR 8335 NISTIR 8344 FIPS 201 FIPS 201 related standards SP 800-73 SP 800-79 SP 800-96 SP 800-76 SP 800-85 SP 800-116 SP 800-78 SP 800-87 SP 800-157 SP 800-171 SP 800-116 Cloud Security Architecture Risk ManagementProcess for FederalFacilities PACS Best PracticesGuide Facility AcessControl Selecting SecureMFA Transition toMulti-FactorAuthentication Mitigating CloudVulnerablilities FedRAMP DigitalIdentity Requirements FIPS 201 ApprovedProducts List (APL) ApplicationRationalizationPlaybook HTTPS ComplianceGuide ICAM Acquisition Guide Zero Trust Maturity Model FICAM Playbooks ICAM PM Playbook PIV Guides PIV in E-PACS PACS Guide ICAM Governance Framework FPKI Guide SSO Playbook FICAM Architecture ePACS 800-53Overlay Common Profiles FBCA Profiles FPKI 800-53 Overlay The Cloud SecurityArchitecture wasdeveloped byUSDS, CISA, andFedRAMP FedRAMP isjointlyoperated byGSA, DHS,and DOD Produced by GSA/CIO Council/ICAMSC/FPKIPA Produced by Congress Produced by White House Produced by OMB/DNI/OPM Produced by NIST/ISC/NSA/FedRAMP Government Body Act of Congress Executive Order Federal Policy Technical Standard Key

IDManagement.gov

An official website of the U.S. General Services Administration

Looking for U.S. government information and services?
Visit USA.gov

This site is a collaboration between GSA and the Federal CIO Council. It is managed by the Identity Assurance and Trusted Access Division in the GSA Office of Government-wide Policy.

Edit this page