Skip Navigation

Defense Health Agency

"On October 1, 2013, the Department of Defense established the Defense Health Agency (DHA) to manage the activities of the Military Health System. These activities include those previously managed by TRICARE Management Activity (TMA), which was disestablished on the same date. During the next several months, all TMA websites will change to reflect the new DHA. We appreciate your patience during this transition."

Personnel Security Branch

Policy and Guidance

The references and specific guidance below provided to TMA by the Office of the Under Secretary of Defense for Intelligence (OUSDI) and OPM safeguard against inappropriate use and disclosure DoD information and resources. The requirements must be meet by ALL TMA personnel, to include contractors, assigned to an ADP/IT position or who have access to information systems containing information protected by the Privacy Act of 1974 and protected health information under the Health Insurance Portability and Accountability Act (HIPAA). Contractor personnel must undergo a successful security screening before being provided logical access to DoD information technology (IT) resources and/or physical access to federally owned or controlled facilities.

  • DoD 5200.2-R, “DoD Personnel Security Program, January 1987
  • DoD 5400.11-R, “Department of Defense Privacy Program, May 14, 2007
  • DoDI 8500.1, “Information Assurance (IA)”, October 24, 2002
  • Homeland Security Presidential Directive 12 (HSPD-12), Policy for a Common Identification Standard for Federal Employees and Contractors, August 27, 2004
  • Federal Information Processing Standards Publication 201 (FIPS 201-1), Personal Identify Verfication (PIV) of Federal Employees and Contractors, March 2006
  • Directive Type Memorandum (DTM) 08-006, DoD Implementation of Homeland Security Presidential Directive -12 (HSPD-12), November 26, 2008
  • Request for Waiver to Grant Interim Access to DoD Information Systems for TRICARE Contractor Employees, May 14, 2009
  • OPM, Aligning OPM Investigative Levels with Reform Concepts, August 24, 2010
  • DoD Standardized Investigation Request Procedures, November 4, 2010
  • Privacy Act of 1974
  • Health Insurance Portability and Accountability Act (HIPAA) of 1996
  • DoD 6025.18-R, “DoD Health Information Privacy Regulation, January 2003