fisma Resources

Sponsored White Papers, Webcasts, and Downloads

The Online Shadow Economy: A Billion Dollar Market For Malware Authors
Live Webcast: Message Security 3.0 - Why today's threats to messaging require a new approach to security
Data Loss Prevention - Strategies you can use to protect your company today

ZDNet Resources

xbasics Ulinzi (exe): xbasics Ulinzi is a new Information Assurance tool focusing exclusively on FISMA. It implements the first two major steps needed to be accomplished for any successful FISMA Information Assurance effort: the Security Categorization of the given information system and the analysis and development of a compliant set of Security Controls...; Tags: FISMA, NIST, Xbasics; Software downloads 2008-06-02
Who keeps failing their FISMA compliance?: The recently released U.S Federal Computer Security Report Card for 2008, indicates that several critical to national security departments continue failing to implement the Federal Information Security Management Act FISMA. From a cyber espionage perspective, the lack of prioritization of departments that must...; Tags: Compliance, FISMA, Dancho Danchev; Blog posts 2008-05-27
Alignment of Information Security Assessment Best Practices: The Federal Information Security Management Act places obligations upon Federal agencies and their contractors, effected through National Institute of Standards and Technology standards and guidelines. FISMA compliance has, however, limited recognition beyond the Federal domain, whereas there is an increasing move in the private sector towards the international standard ISO/IEC...; Tags: Information Security, FISMA, Best Practice, FISMA Compliance, Security; White papers 2007-06-07
House looks into 'bad' Chinese attacks on State, Commerce systems: A House subcommittee is holding a hearing tomorrow to try to understand "how deeply" US government computers have been penetrated by foreign forces and whether the governments IT response so far is adequate, ComputerWorld reports. "The purpose of this hearing is to afford [House members] the opportunity...; Tags: Security, International, Government technology, Congress; Blog posts 2007-04-18
Building a Case for IT Security Awareness: Best Practices for Increasing Impact and Promoting Cultural Change: Since the Federal Information Security Management Act FISMA was signed into law in 2002, Federal agencies have struggled to establish agency-wide information security programs that meet baseline requirements for protecting information assets. Since the government performs important missions that require the storage and use of sensitive information, implementation of FISMA's...; Tags: IT Security, Agency, Information Technology, FISMA, Best Practice, SANS Institute, Advertising & Promotion, Marketing; White papers 2007-03-01

Improve your certification and accreditation processes by drawing on these four C&A models: Certification and accreditation processes formally evaluate the security of an information system, determine the risk of operating the information system, and then either accept or not accept that risk. There are four primary certification and accreditation models that agencies use as a basis for developing their standardized C&A...; Tags: Information System, Certification, DITSCAP, FISMA, NIST, C&A, Chapter Coverage, Quality, Strategy, Business Operations, Management; Book chapters 2007-01-10
Agencies fail to comply with FISMA: Agencies fail to comply with FISMAU.S. federal agencies do okayActually, I have noticed over the years that agenices are in fact on the whole getting much better at complying with FISMA. In fact, from my experience in working both in the private sector and with the government, I believe that...; Tags: FISMA, U.S. federal agency, agency; Discussion threads 2006-11-22
Agencies fail to comply with FISMA: Federal agencies are failing to test their IT security controls consistently, a new General Accounting Office report has found, Government Accounting News reports. “Federal agencies have not adequately designed and effectively implemented policies for periodically testing and evaluating information security controls,” the GAO concluded after surveying 24 major agencies...; Tags: agency, FISMA, General Accounting Office; Blog posts 2006-11-20
On heels of VA's giant data breach, White House & GAO review security practices: According to ComputerWorld, the White House Office of Management and Budget OMB and the Government Accountability Office GAO are jointly looking into the data security practices of the Veterans Administration as well as several other agencies. Recently, a computer containing the personal data of over 26.5 million people was...; Tags: OMB, FISMA, password; Blog posts 2006-06-19
VA boss: Give security laws more teeth: Federal data security laws need more "teeth," VA Secretary Jim Nicholson told Congress today, News.com reports. "While we have a system in the government of doing background investigations on those to whom we will give access to classified information, we do not have a similar screen for those to whom...; Tags: Tom Davis, FISMA, security; Blog posts 2006-06-08
FISMA Compliance: A Holistic Approach to FISMA and Information Security: Threats and attacks against information systems are on the rise. Internet Security Systems ISS and other security companies are now identifying more than 150 new viruses, Trojans, bots and vulnerabilities each week. Attacks launched by dangerous adversaries are targeting information systems globally, including federal systems, to inflict irreparable damage and...; Tags: Information Security, Security, Internet Security Systems Inc., FISMA; White papers 2006-04-01
Agencies get failing grades in cybersecurity, DHS worst of all: Need proof that the agencies charged with fighting terror don't take cybersecurity seriously? Just take a look at the House Government Reform Committee's report card, released today. The Washington Post reports the committee gives the federal government an overall grade of D- with an F for the third straight year...; Tags: agency; Blog posts 2006-03-16
Identifying Windows XP and Server 2003 Common Criteria Certified Requirements for the NIST Special Publication 800-53 Recommended Security Controls for Federal Information Systems: The NIST Special Publication SP 800-53 has special significance in that the security controls contained in the recommended baselines form the basis for those controls that will become mandatory in a Federal Information Processing Standard. The proposed Federal Information Processing Standard FIPS 200, Minimum Security Controls for Federal Information Systems,...; Tags: Information System, Microsoft Windows XP, FISMA, Server, NIST, Microsoft Windows, Security, Operating Systems, Software; White papers 2006-01-11
FISMA Management: Getting Value From Compliance: Since the Federal Information Security Management Act of 2002 FISMA was written to enforce good information assurance practices, one would expect to find a large overlap between what agencies are required to do under FISMA and what they would have done anyway as a matter of best practice. FISMA reports...; Tags: Compliance, FISMA, Computer Associates International Inc.; White papers 2005-11-01
IT Security Solutions for Government: Download this HP-sponsored Business Strategy Report from the Edison Group for an overview of the technical and legislative requirements for e-government data security in the United States. The paper outlines what the Chief Security Officer of a government institution is responsible for under the three main data protection policies: Federal...; Tags: Data Protection, IT Security, Hewlett-Packard Co., Information Technology, FISMA, Disaster Recovery, Backups, E-government, Security, Data Management, Government; White papers 2005-09-20
What worries fed CIOs? Poor quality software, insecure wireless networks: What are federal information security officers worried about? Shoddy software, wireless networks security, and compliance with the Federal Information Security Management Act FISMA. That's what federal chief information security officers told Intelligent Decisions, an IT consultanting firm, for their second annual survey of CISOs. Software developers have dropped the ball...; Tags: FISMA, CISO, wireless; Blog posts 2005-08-30
Xacta FISMA Accelerator: If you're a federal CISO who needs a game plan for quickly correcting a poor FISMA report card, Telos has the answer. It's Xacta FISMA Accelerator, a new solution for jump-starting your FISMA compliance efforts. Developed by Xacta Corporation, the leading provider of information assurance and C&A solutions to the...; Tags: Telos Corp., FISMA; White papers 2005-08-01
Think Secure: Building Your Security-Minded Workforce: The United States Federal Government is bound to provide information security awareness training by the Federal Information Security Management Act FISMA.The Health Insurance Portability and Accountability Act HIPAA requires that the health care industry provide privacy training to their employees. Financial institutions must comply with the Gramm-Leach-Bliley Act GLBA.The Sarbanes-Oxley...; Tags: Getronics, E-learning, FISMA, Health Care, Training, Gramm-Leach-Bliley Act, United States Federal Government, Regulatory Compliance, Hipaa, Regulations, Sarbanes-Oxley, Workforce Management, Vertical Industries, Benefits, Healthcare, Human Resources, Policies And Procedures, Government, Financial Accounting, Finance, Enterprise Software, Software; White papers 2005-07-25
Information Security: Weaknesses Persist at Federal Agencies Despite Progress Made in Implementing Related Statutory Requirements: Federal agencies rely extensively on computerized information systems and electronic data to carry out their missions. The security of these systems and data is essential to prevent data tampering, disruptions in critical operations, fraud, and inappropriate disclosure of sensitive information. Concerned with accounts of attacks on systems via the Internet...; Tags: Information Security, Agency, FISMA, General Accounting Office, Attack, Security; White papers 2005-07-15
Department of Justice Awards Archer Technologies Agency-Wide Contract for Incident Management: Archer's Incident Management solution will provide the DOJ with tools for successfully combating security and safety breaches, enabling the department to remain in compliance with mandates for improved governance, such as the Federal Information Security Management Act FISMA. This customizable solution facilitates the anonymous and confidential reporting of cyber incidents,...; Tags: Agency, FISMA, U.S. Department Of Justice, Incident Management, Archer, Security; White papers 2005-07-11