Compliance with the Federal Information Security Management Act, or FISMA, is one of the most daunting challenges that government chief information security officers face this year. Part of the 2002 E-Government Act, FISMA requires each federal agency to develop, document, and implement comprehensive information-security policies and practices to deal with security threats that concern government entities and businesses alike.
Knowing that federal IT security managers are devoting an increasing amount of time and resources to comply with FISMA, systems and security management vendor NetIQ Corp. on Monday introduced FISMA-specific templates for its Security Compliance software suite. The four templates tackle access control, audit and accountability, configuration management, and identification and authentication, automating the IT security-auditing process for federal agencies now required to submit security-related systems assessments annually to the White House's Office of Management and Budget. The templates produce reports for security managers that indicate their IT systems' level of compliance and ways in which they can improve their compliance scores.
See full Article.
Posts
