15th November, 2013
The Federal Information Security Management Act is Title III of the E-Government Act of 2002 of United States federal law enacted in 2002. FISMA Act focuses on the development, documentation, and implementation an Information Security Program.
Act was formulated to emphasize on the importance of information security of the United States in concern with the economic and national security interests. FISMA act as a framework to protect the government (federal) information, operations and assets against natural or man-made threats. FISMA Act provides security to the information and information systems. It also covers services provided or managed by another agency, contractor, or other source.
FISMA specifies the need of conducting yearly Information Security Reviews as part of the Risk Assessment in order to manage the risks in an efficient, cost effective and proactive manner.
As per FISMA, information security program should focus on the following points:
Implementation of FISMA requires policies and procedures as per the organizational structure and roles and responsibilities and type of risks and threat that are faced by the organization. DQS India provides implementation guidance for FISMA to the organizations.
We have Security Experts with years of experience of working with different Security Standards, Technologies and Domains. We can help in the development of policies and procedures from the scratch, provide guidance for implementation leading to the implementation assessments.
Previous Post
CMMI Institute released SCAMPI MDD V1.3aNext Post
Gap in Information Security skill set and staff requirements in India
Rajendra's LinkedIn Profile
Rajendra is a qualified and certified Lead Appraiser and Instructor for the following :
Rajendra is Lead Assessor for ISO 9001 (QMS), ISO 14001 (EMS), OHSAS 18001 (OHSMS) since 1994
International Automotive Task Force (IATF) approved Lead Assessor for Automotive Standard TS 16949:2009
Lead Assessor for ISO 27001 (ISMS) and ISO 20000-1 (ITSM)
Rajendra has 25 years experience in the industry.