In light of the legislation such as the Federal Information Security Management Act (FISMA), there is an increased need to measure the ability of government organizations and companies subject to these standards to protect information. This book provides guidelines for addressing FISMA compliance.
Few organizations have not felt the impact of government regulation in the area of information systems security. In light of new legislation such as the Federal Information Security Management Act (FISMA), there is an increased need to measure the ability of government organizations and companies subject to these standards to protect information. This book provides practical guidelines for addressing FISMA compliance. It offers workable solutions for establishing and operating a security compliance program, including tips on gaining management support, designing and staffing a compliance capability, building organizational relationships, and integrating compliance into the system development life cycle.