42 U.S. Code § 18445 - Information security
The assessments required of the Inspector General under section 3545  of title 44 shall evaluate the effectiveness of the system described in this subsection.
In consultation with the Department of Education, other national security agencies, and other agency directorates, the chief information officer shall institute an information security awareness and education program for all operators and users of NASA information infrastructure, with the goal of reducing unauthorized remote, proximity, and insider use or access.
In this section, the term “information infrastructure” means the underlying framework that information systems and assets rely on to process, transmit, receive, or store information electronically, including programmable electronic devices and communications networks and any associated hardware, software, or data.
 See References in Text note below.