While many agencies struggle to comply with Federal Information Security Management Act (FISMA) regulations, those that have embraced its requirements have found that their comprehensive and flexible nature provides a sound security risk management framework for the implementation of essential system security controls. Detailing a proven appro

chapter 2|22 pages

Principles of FISMA Reporting

chapter 3|14 pages

Management Support

chapter 4|20 pages

The Information Security Organization

chapter 5|16 pages

Staffing Considerations

chapter 6|14 pages

Program Planning

chapter 7|16 pages

Developing Policy and Guidance

chapter 8|20 pages

Training and Awareness

chapter 9|16 pages

Audit Liaison

chapter 10|16 pages

Monitoring Mechanisms

chapter 11|10 pages

Life-Cycle Issues

chapter 12|26 pages