White Papers for Federal Information Security Management Act (FISMA)

Checklist to Assess Security in Federal Government IT Contracts

SecureIT

This whitepaper examines the security threats and information technology (IT) security requirements associated with FISMA and NIST for contracted IT services, websites, outsourced business processing and on-demand applications. When Government agencies contract for these services, agency Chief Information Officers (CIO), Chief Information Security Officers (CISO) and System Owners must ensure that Federal government information and services are adequately protected and in compliance with a series of national security policies and standards. This paper provides a checklist for system owners and security professionals to assist in reviewing current contracts and aid in planning for new acquisitions. Industry standard alternatives to the Federal government security frameworks are also presented as a means to aid in determining potential usage. Solutions are provided to enable Federal agency personnel responsible for IT, contracts, and business operations to perform these assessments, remediate non-compliance, address security risks and put in place sustainable cyber security programs.

View the White Paper

Share or bookmarklet this web page at: