Federal IT Security
You've streamlined your company, made it as efficient and profitable as possible. Now how do you keep your information, staff, and clients safe from IT threats?
OR SOMETHING LIKE THIS:
The National Institute of Standards and Technology (NIST), in accordance with the Federal Information Security Management Act (FISMA), provides policies that all Agencies must adhere to. What are these policies? How do you implement them? And, how do they effect you?
Data Federal assists agencies in performing their yearly A&A process and documenting the defined policies and procedures to ensure compliance with FISMA. We have done Rev 3 A&A’s and have implemented the Revision 4 policies into our own process. Revision 4 removed some controls while adding others. This resulted in major changes to the mandates of NIST and the implantation on the Agency’s end.
Please select an article below:
NIST SP 800-53 Rev. 4
The National Institute of Standards and Technology (NIST) issues a document that defines the required security state of Government Agencies according to their security classification. The prior Revision (rev. 3) has been sunsetted and replaced with Revision 4. Revision 4 needs to be implemented and details of this new SP can be found here.
Information Security Continuous Monitoring (ISCM) for Federal
Information Systems and Organizations
The National Institute of Standards (NIST) recently implemented NIST SP 800-53 Rev 4. This revision defines a policy for Information Security Continuous Monitoring (ISCM) for Federal Information Systems and Organizations. As many are not familiar with this new policy, NIST has issued NIST SP 800-137 that goes into the detail of ISCM. More information on this special publication can be found here.