SEARCH RESULTS
 
Showing 1-10 of 13 records
 
Expand article

Federal Information Security and Management Act -- Five Years On

2007-12-18 02:00:00 by Shannon Kellogg in Speaking of Security, the RSA Blog and Podcast
 
...FISMA) just completed its fifth year on the books as a federal law As the follow up to the Government Information Security Act of 2000, FISMA established an updated legal framework for federal information security, including baseline security standards for federal agencies. I remember that the information security community was excited about...
 
Tags: federal information security, management act, fisma, baseline security standards, information security community, mixed bag, federal law, focus, legal framework
 
 
 
 
Expand article

US Government planning to spend 10% of its IT budget on cyber-security by 2009.

2008-02-25 13:59:58 by Khalid Kark in Security & Risk Management
 
...FISMA. These numbers may seem a little out of whack, but here is why I think the US government is headed in the right direction 1. US government should be spending more than the commercial sector. The impact of a successful attack on US government infrastructure would entail much more than reputation damage. It would effect the morale of the...
 
Tags: cyber-security, budget, cyber-security budget, security, government, measure security, security budgets, mature security postures, government infrastructure
 
 
 
 
Expand article

House committee issues report and finds fault with TSA web site

The Article has images
2008-01-15 09:35:53 by Evan Francen in The Breach Blog
...FISMA) and the Privacy Act, 5 U.S.C. 552a. In addition to design and implementation standards, the CISO ensures that the systems are secured against unauthorized use through the use of a layered, defense-in-depth security approach involving procedural and information security safeguards as mandated by FISMA following National Institute of...
 
Tags: tsa, website, website contract, traveler redress website, tsa moved quickly, security breach, information security breach, security vulnerabilities, multiple security vulnerabilities
 
 
 
 
Expand article

What impact will increased security budgets have on federal information security systems?

2008-02-26 10:44:08 by Geoffrey Turner in Security & Risk Management
 
...FISMA or HSPD-12 Partly to address this problem, a new Line of Business (LOB) was added to the federal IT budget last year: the Information Systems Security LOB. But OMB itself has yet to work out how to identify systems security spending in the departments that should be allocated to the ISS LOB, so it is still too early to try and assess...
 
Tags: federal, iss lob, federal iss lob, current federal security, assess federal security, mature federal strategy, federal security, iss lob portends, lob
 
 
 
 
Expand article

Ask the Auditor: Who is Responsible for Information Security?

2007-12-29 06:24:50 by Editor in Security Links
 
...FISMA) library 12. Information Security Governance: Guidance for Boards of Directors and Executive Management 2nd Edition (ISACA 13. The Open Web Application Security Project Information Security Auditing Resources 1. The Institute of Internal Auditors (IIA) has published a series of three board-level guidance reports focusing on information...
 
Tags: information, information security, information policy, information security risks, information assurance, information security governance, information security managers, information security management, assign information security
 
 
 
 
Expand article

The Daily Incite - January 7, 2008

The Article has images
2008-01-07 09:35:00 by Mike Rothman in Mike Rothman's blog
...FISMA will make it relevant? If they don't even know how to test it, the odds they've done it right are nil. - GCN coverage ID theft services will be big in 2008. How many times do you need to get nailed before you actually take action? Maybe a few, but lots of folks are there. - Tim Wilson's Dark Reading blog We could use a storm in GA, but...
 
Tags: security, security house, information security, security professionals, top security news, chief security officer, security vendors, internet security, security mike
 
 
 
 
Expand article

The Daily Incite - February 5, 2008

The Article has images
2008-02-05 06:43:30 by Mike Rothman in Mike Rothman's blog
...FISMA and all the other indications that a lot of the money spent today by the Feds on security is wasted, how on earth do they think that throwing more money at the problem is going to help. All I can say is that it'll be a great Q3 in public security land if this budget goes through Link to this The living policy So what? - Dr. A recently...
 
Tags: metrics, security metrics wiki, information security, information, security, security professionals, top security news, msft security team, security policy
 
 
 
 
Expand article

GAO: U.S. Federal agencies still 'fall short'

2008-02-19 10:13:34 by Editor in Adventures in Security
 
...FISMA requirements, and OMB recommendations
 
Tags: gao, gao appears, omb recommendations, fisma requirements, basic security, minor deficiencies, audits, simply, failure
 
 
 
 
Expand article

NoVA Sec Meeting 1930 Thu 31 Jan 08

The Article has images
2008-01-29 00:51:00 by Richard Bejtlich in TaoSecurity
...FISMA, the certification and accreditation (C&A) process, and related items in the parking lot Note: I am only cross-posting this one NoVA Sec announcement because it has been a while since we held a NoVA Sec meeting. I will post future announcements only on the NoVA Sec blog and mailing list Copyright 2003-2008 Richard Bejtlich and...
 
Tags: nova sec, nova sec announcement, nova sec blog, taosecurity, post future announcements, january, thursday, thursday night, richard bejtlich