4 tips for a strong defense
For the past several years, federal officials have focused on documenting the actions to certify and accredit their systems. Submitting systems to rigorous security certification and accreditation procedures is mandatory under the Federal Information Security Management Act (FISMA) of 2002. But some security experts, such as Alan Paller, research director of the SANS Institute, said those lengthy certification and accreditation procedures have sometimes hobbled the efforts of agency managers to secure their mission-critical systems.
By Heather H. Havenstein at FCW.
[ Read more ]