EC-Council: Computer Hacking Forensic Investigator(CHFI-V10) |
||||
Module 1 : Computer Forensics in Today's World |
||||
| Notes available : 31 |
You are not logged in. Please Login for track your learning progress |
|||
Bookmark this Note
Note ID: 125
Federal Information Security Modernization Act (FISMA)
If you want to share the link of this note, please click here to "Copy note link" and share that generated link. Link from URL may change in future.
The Federal Information Security Modernization Act (FISMA) is a US federal law that was signed in 2002 and updated in 2014. It defines a framework to protect government information, operations, and assets from threats. The Federal Information Security Management Act (FISMA) is United States legislation that defines a framework of guidelines and security standards to protect government information and operations.
FISMA requires federal agencies to:
- Develop, document, and implement agency-wide information security programs
- Maintain an inventory of information systems
- Categorize information security risks
- Implement security controls
- Conduct risk assessments
- Create a system security plan
- Conduct annual security reviews
- Continuously monitor information systems
FISMA applies to:
- Federal agencies
- State governments that manage federal programs
- Contractors
- Non-governmental organizations that work with and are funded by the federal government
 |
Go to notes |  |