Is your agency failing FISMA?

Wednesday, 13 June 2007, 2:21 AM EST

Is your agency failing to meet its Federal Information Security Management Act (FISMA) requirements? If so, perhaps it's because you feel that FISMA has become nothing more than a "paper drill." Or perhaps you feel that the auditors have become "bounty hunters," getting paid for the number of findings they report. More than likely you or someone in your agency just doesn't see the full value in the entire process because of the complaints. Randy Nash provides an introduction and general overview to the Federal Information Security Management Act (FISMA) and the Certification and Accreditation (C&A) process and examines why many organizations have trouble complying.

At InformIT.

[ Read more ]




Spotlight

Why vulnerability disclosure shouldn’t be a marketing tool

Brian Honan, CEO at BH Consulting, talks about a recent vulnerability disclosure trend – a trend that he believes may ultimately cause more harm than good: security vendors using vulnerability disclosure as a marketing tool with the goal of enhancing their company’s bottom line.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  
DON'T
MISS

Wed, Jul 1st
    COPYRIGHT 1998-2015 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //