Essay about Fisma

888 Words Feb 18th, 2014 4 Pages
All federal agencies are required to comply with FISMA guidelines for IT systems security. Failure to pass an inspection can result in unfavorable publicity, increased oversight of your agency, computer breaches, and even a reduction in your IT budget. In this white paper, we’ll look at:

• What FISMA is and why it was created

• Key steps in achieving FISMA compliance

• Tools that can help you meet FISMA requirements

FISMA provides a set of specific guidelines for federal agencies on how to plan for, budget, implement, and maintain secure systems. These new, stricter security guidelines replaced an expired set of rules under the Government Information Security Reform Act. To achieve FISMA compliance, your agency must:

• Plan
…show more content…
Training and overseeing personnel with significant responsibilities for information security with respect to such responsibilities document,

and implement an agency wide information security program, to provide information security for the information and information systems that support the operations and assets of the agency, including those provided or managed by another agency, contractor, or other source, that includes periodic assessments of the risk and magnitude of the harm that could result from the unauthorized access, use, disclosure, disruption, modification, or destruction of information and information systems that support the operations. risk assessments required by cost-effectively reduce information security risks to an acceptable level ensure that information security is addressed throughout the life cycle of each agency information system. Subordinate plans for providing adequate information security for networks, facilities, and systems or groups of information systems, as appropriate security awareness training to inform personnel, including contractors and other users of information systems that support the operations and information security risks associated with their activities and their responsibilities in complying with agency policies and procedures designed to reduce these risks. periodic testing and evaluation of the

Related Documents