IT Policy Archive
FITARA requires a public posting of NASA’s IT Policies into an “IT Policy Archive”. The lists below point to these policies that are accessible on the NASA Online Directives Information System.
NASA IT Policy Directives
- NPD 1000.3E The NASA Organization
- NPD 1382.17K NASA Privacy Policy
- NPD 1420.1A NASA Forms Management
- NPD 1440.6I NASA Records Management
- NPD 1490.1I NASA Printing, Duplicating, and Copying Management
- NPD 2200.1D Management of NASA Scientific and Technical Information
- NPD 2540.1K Acceptable Use of Government Furnished Information Technology Equipment, Services and Resources
- NPD 2800.1E Managing Information Technology
- NPD 2810.1F NASA Information Security Policy
- NPD 2830.1D NASA Enterprise Architecture
NASA IT Procedural Requirements
- NPR 1382.1B NASA Privacy Procedural Requirements
- NPR 1441.1E NASA Records Management Program Requirements
- NPR 2081.1B Chapter 3 NASA Conducted Programs and Activities
- NPR 2200.2E Requirements for Documentation, Approval and Dissemination of Scientific and Technical Information
- NPR 2800.2A Information and Communication Technology Accessibility
- NPR 2830.1A NASA Enterprise Architecture Procedures
- NPR 7120.5F NASA Space Flight Program and Project Management Requirements
- NPR 7120.7A NASA Information Technology Program and Project Management Requirements
- NPR 7120.8A NASA Research and Technology Program and Project Management Requirements
NASA Identity, Credential, and Access Management (ICAM) Policies
- NPD 1600.2F NASA Security Policy
- NPR 1600.3A Personnel Security
- NPR 1600.4A Identity and Credential Management
- NPR 2810.1F Security of Information and Information Systems
- NPR 2841.1 Identity, Credential, and Access Management
NASA Modernizing the Federal Risk and Authorization Management Program (FedRAMP) Policies
NASA is in the process of updating its internal policies. The publicly available policy will be posted when it is available.
Download a .zip version of the NASA IT Policy Archive.