dbo:abstract
|
- The Federal Information Security Management Act of 2002 (FISMA, 44 U.S.C. § 3541, et seq.) is a United States federal law enacted in 2002 as Title III of the E-Government Act of 2002 (Pub.L. 107–347 (text) (PDF), 116 Stat. 2899). The act recognized the importance of information security to the economic and national security interests of the United States. The act requires each federal agency to develop, document, and implement an agency-wide program to provide information security for the information and information systems that support the operations and assets of the agency, including those provided or managed by another agency, contractor, or other source. FISMA has brought attention within the federal government to cybersecurity and explicitly emphasized a "risk-based policy for cost-effective security." FISMA requires agency program officials, chief information officers, and inspectors general (IGs) to conduct annual reviews of the agency's information security program and report the results to Office of Management and Budget (OMB). OMB uses this data to assist in its oversight responsibilities and to prepare this annual report to Congress on agency compliance with the act. In FY 2008, federal agencies spent $6.2 billion securing the government's total information technology investment of approximately $68 billion or about 9.2 percent of the total information technology portfolio. NIST develops standards, metrics, tests, and validation programs to promote, measure, and validate the security in information systems and services. NIST hosts the following:
* FISMA implementation project
* Information Security Automation Program (ISAP)
* National Vulnerability Database (NVD) – the U.S. government content repository for ISAP and Security Content Automation Protocol (SCAP). NVD is the U.S. government repository of standards based vulnerability management data. This data enables automation of vulnerability management, security measurement, and compliance (e.g., FISMA) (en)
|
dbo:wikiPageExternalLink
| |
dbo:wikiPageID
| |
dbo:wikiPageLength
|
- 22101 (xsd:nonNegativeInteger)
|
dbo:wikiPageRevisionID
| |
dbo:wikiPageWikiLink
| |
dbp:actsRepealed
| |
dbp:amendments
|
- Replaced by the Federal Information Security Modernization Act of 2014 (en)
|
dbp:citePublicLaw
| |
dbp:citeStatutesAtLarge
| |
dbp:colloquialacronym
| |
dbp:committees
| |
dbp:effectiveDate
| |
dbp:enactedBy
| |
dbp:introducedby
| |
dbp:introduceddate
| |
dbp:introducedin
| |
dbp:leghisturl
| |
dbp:longtitle
|
- An Act to strengthen Federal Government information security, including through the requirement for the development of mandatory information security risk management standards. (en)
|
dbp:nickname
|
- E-Government Act of 2002 (en)
|
dbp:passedbody
| |
dbp:passeddate
| |
dbp:passedvote
|
- passed unanimous consent (en)
- passed without objection (en)
|
dbp:publicLawUrl
| |
dbp:sectionsAmended
|
- (en)
- § 3501 et seq. (en)
- § 101 (en)
|
dbp:sectionsCreated
| |
dbp:shorttitle
|
- Federal Information Security Management Act of 2002 (en)
|
dbp:signeddate
| |
dbp:signedpresident
| |
dbp:titleAmended
| |
dbp:wikiPageUsesTemplate
| |
dcterms:subject
| |
gold:hypernym
| |
rdf:type
| |
rdfs:comment
|
- The Federal Information Security Management Act of 2002 (FISMA, 44 U.S.C. § 3541, et seq.) is a United States federal law enacted in 2002 as Title III of the E-Government Act of 2002 (Pub.L. 107–347 (text) (PDF), 116 Stat. 2899). The act recognized the importance of information security to the economic and national security interests of the United States. The act requires each federal agency to develop, document, and implement an agency-wide program to provide information security for the information and information systems that support the operations and assets of the agency, including those provided or managed by another agency, contractor, or other source. (en)
|
rdfs:label
|
- Federal Information Security Management Act of 2002 (en)
|
owl:sameAs
| |
prov:wasDerivedFrom
| |
foaf:isPrimaryTopicOf
| |
is dbo:wikiPageRedirects
of | |
is dbo:wikiPageWikiLink
of | |
is dbp:actsAmended
of | |
is foaf:primaryTopic
of | |