CMMI Frequently Asked Questions and their responses from CMMI Consultant(s)
What is FIPS 200 (Federal Information Processing Standard Publication 200)?
11th November, 2013
FIPS 200 is the acronym for Federal Information Processing Standard Publication 200. It is the second of the mandatory security standards, FIPS 199 being the first one, defined by the Federal Information and Information Systems of the United States Federal Government. FIPS 200 is the Standards for Security Categorization.
FIPS 200 standard emphases more security during the development, implementation, and operation of more secure information systems.
FIPS 200 defines following 17 security areas covered under confidentiality, integrity, and availability (CIA) of federal information systems and the information processed, stored, and transmitted by those systems.
These security areas are:
- Access Control;
- Awareness and Training;
- Audit and Accountability;
- Certification, Accreditation, and Security Assessments;
- Configuration Management;
- Contingency Planning;
- Identification and Authentication;
- Incident Response;
- Maintenance;
- Media Protection;
- Physical and Environmental Protection;
- Planning;
- Personnel Security;
- Risk Assessment;
- Systems and Services Acquisition;
- System and Communications Protection; and
- System and Information Integrity
FIPS 200 Implementation
Implementation of FIPS 200 requires policies and procedures as per the organizational structure and roles and responsibilities. These policies and procedures are the foundation and basis of the implementation of the FIPS 200 in an organization. DQS India provides implementation guidance for FIPS 200 to the organizations across the world. You can rely on our services as we have Security Experts with years of experience of working with different Security Standards, Technologies and Domains. We can help in the development of policies and procedures from the scratch, provide guidance for implementation leading to the implementation assessments.
Previous Post
What is FIPS 199 (Federal Information Processing Standard Publication 199)?Next Post
CSPM Exam attempted by Karsun Solutions LLC, USA employeesSidebar
Author: Rajendra Khare
Rajendra's LinkedIn Profile
Rajendra is a qualified and certified Lead Appraiser and Instructor for the following :
- SCAMPI High Maturity Lead Appraiser (Certified)
- CMMI Institute-Certified SCAMPI v1.3 Lead Appraiser for Acquisition (Certified)
- CMMI Institute-Certified SCAMPI v1.3 Lead Appraiser for Development (Certified)
- CMMI Institute-Certified SCAMPI v1.3 Lead Appraiser for Services (Certified)
- CMMI Institute-Certified Introduction to CMMI-DEV v1.3 Instructor (Certified)
- CMMI Institute-Certified Services Supplement for CMMI-DEV Instructor (Certified)
- CMMI Institute-Certified CMMI-DEV Level 2 for Practitioners Instructor (Certified)
- CMMI Institute-Certified CMMI-DEV Level 3 for Practitioners Instructor (Certified)
- CMMI Institute-Certified SCAMPI B & C Team Leader for Acquisition (Certified)
- CMMI Institute-Certified SCAMPI B & C Team Leader for Development (Certified)
- CMMI Institute-Certified SCAMPI B & C Team Leader for Services (Certified)
Rajendra is Lead Assessor for ISO 9001 (QMS), ISO 14001 (EMS), OHSAS 18001 (OHSMS) since 1994
International Automotive Task Force (IATF) approved Lead Assessor for Automotive Standard TS 16949:2009
Lead Assessor for ISO 27001 (ISMS) and ISO 20000-1 (ITSM)
Rajendra has 25 years experience in the industry.