The Federal Information Security Management Act (FISMA) provides many standards and guidance for implementing effective security management programs. In a seven page paper describe the main elements of FISMA in the management and governance offered for i

timer Asked: Feb 4th, 2019
account_balance_wallet $10

Question Description

APA format

Double Space

Zero Plagarism

Tutor Answer

School: Boston College

Hello, here you go. Please check it. Thank you



Main Elements of FISMA in the Management and Governance of Federal Information Systems
Students Number
Institution Affiliation

The Federal Information Security Management Act (FISMA), also known as the EGovernment Act is America's federal policy for information security (IS). The law was enacted
in 2002, and it recognized the significance of IS to the financial and national security interest of
America. The law necessitates all state organizations to create, document, and implement an
agency-wide program to offer for the significance of IS for the data and information systems that
back the processes and the agency's assets, including those given or controlled by a different
organization or other source. The Act has brought responsiveness within the national government
to cybersecurity and clearly highlighted a ‘risk-based strategy for cheap security. FISMA obliges
agency program and chief information officers, and inspector generals to perform yearly
evaluations of the agencies IS program and report the outcomes to management and budget
office (Gantz & Philpott, 2013). This office uses this information to help in its oversight duties
and to make this yearly report to Congress or agency compliance with the law. The aim of the
Act is to assign precise roles to national agencies, the National Institute of Standards and
Technology (NIST), and the management and budget office so as to strengthen IS systems.
Particularly, the Act necessitates all heads of all agencies to implement strategies and methods to
cost-effectively minimize information technology (IT) security risks to a satisfactory level.
FISMA defines the term information security as the act of protecting data and data
systems from illegal access, usage, leak, interruption, change, or damage so as to offer reliability,
privacy, and availability. FISMA features include strategy development, risk management, and
IS cognizance training for federal organizations. The Act dictates the establishment of IS
protections in the course of all federal organizations operations. FISMA obliges federal
organizations to develop IS agendas. It similarly endorses viable information security tools. Once

risk outcome valuations are finalized, strategies and security principles must be developed.
Further, threat protections should be established during the course of the development of any
government IS. All established IS protecting procedures ought to be tested frequently to warrant
best operations. FISMA correspondingly permits a chief information officer (CIO) to delegate
another officer for development of an organization IS program, which needs to be welldocumented and includes FISMA-dictated IS cognizance training for workers and contractors.
FISMA besides necessitate...

flag Report DMCA

Thanks, good work

Similar Questions
Hot Questions
Related Tags
Study Guides

Brown University

1271 Tutors

California Institute of Technology

2131 Tutors

Carnegie Mellon University

982 Tutors

Columbia University

1256 Tutors

Dartmouth University

2113 Tutors

Emory University

2279 Tutors

Harvard University

599 Tutors

Massachusetts Institute of Technology

2319 Tutors

New York University

1645 Tutors

Notre Dam University

1911 Tutors

Oklahoma University

2122 Tutors

Pennsylvania State University

932 Tutors

Princeton University

1211 Tutors

Stanford University

983 Tutors

University of California

1282 Tutors

Oxford University

123 Tutors

Yale University

2325 Tutors