White Papers for Federal Information Security Management Act (FISMA)

FISMA Compliance: A Holistic Approach to FISMA and Information Security

ISS

Threats and attacks against information systems are on the rise. Internet Security Systems (ISS) and other security companies are now identifying more than 150 new viruses, Trojans, bots and vulnerabilities each week. Attacks launched by dangerous adversaries are targeting information systems globally, including
federal systems, to inflict irreparable damage and ultimately threaten our nation’s security.
As a result, the Federal Information Security Management Act (FISMA) was passed to ensure the protection of the nation’s critical infrastructure against vulnerabilities that threaten economic and national security.
FISMA provides a framework for developing, implementing, monitoring and reporting on an agency’s information security program. Protecting the nation’s infrastructure, sustaining a secure environment against new threats and complying with complex and evolving regulatory requirements pose many challenges for agencies. While progress has been made in identifying and addressing agency security weaknesses, deficiencies continue to exist in security policy, procedures and practices. Maintaining an effective, compliant environment goes beyond periodic audits, paperwork and reporting. It requires a holistic strategy and approach to improving security posture and compliance.
This white paper provides an overview of the Federal Information Security Management Act legislation and discusses how ISS strategic approach to developing and maintaining an enterprise-wide security infrastructure best addresses FISMA requirements and continuous security improvements.

View the White Paper

Share or bookmarklet this web page at: