Agencies must incorporate security into the architecture of their information and systems to ensure that security supports agency business operations and that plans to fund and manage security are built into life-cycle budgets for information systems.

WHITEHOUSE: CIRCULAR NO. A-130 Revised