In plain terms. The Information Technology Management Reform Act of 1996, enacted with the Federal Acquisition Reform Act as the Clinger-Cohen Act, required agencies to appoint Chief Information Officers and to use capital-planning and performance-based management for IT investments. It established the governance model under which agency IT security responsibilities are now organized.
Citation. Pub. L. 104-106 (Feb. 10, 1996); 40 U.S.C. ch. 113.