Comparison of SAS 70 to FISMA and NIST Security Framework  
  SEARCH: Sign In | Register | Contact Us | Site Map | Home  

White Papers for Federal Information Security Management Act (FISMA)

Comparison of SAS 70 to FISMA and NIST Security Framework

SecureIT

This whitepaper examines the requirements of Federal Information Security Management Act (FISMA) and associated NIST security standards that define the Federal Government information security framework. When Government uses outsourcing, managed services or contracted services (Cloud computing, SaaS, etc) approaches for business services or technology solutions, commercial providers must meet government security standards. A common industry assessment standard used is known as the Statement of Auditing Standards (SAS) No. 70. The objective of this paper is to contrast the SAS 70 assessment method to the FISMA requirements and NIST standards to highlight the differences and gaps which Federal government agencies must be aware and solution providers must address.

View the White Paper



Share or bookmarklet this web page at:



Google
Privacy Policy | Terms & Conditions | Support | Directory Links | Contact Us | Site Map | Home
Copyright © 2007-2012 ComplianceHome.com. A SUPREMUS GROUP venture. All rights reserved.