The head of each agency operating or exercising control of a national security system shall be responsible for ensuring that the agency—
(1) provides information security protections commensurate with the risk and magnitude of the harm resulting from the unauthorized access, use, disclosure, disruption, modification, or destruction of the information contained in such system;
(2) implements information security policies and practices as required by standards and guidelines for national security systems, issued in accordance with law and as directed by the President; and
(3) complies with the requirements of this subchapter.
(Added Pub. L. 113–283, §2(a), Dec. 18, 2014, 128 Stat. 3084.)
Provisions similar to this section were contained in sections 3536 and 3547 of this title prior to repeal by Pub. L. 113–283.