About: Federal Information Security Management Act of 2002

Property	Value
dbo:abstract	The Federal Information Security Management Act of 2002 (FISMA, 44 U.S.C. § 3541, et seq.) is a United States federal law enacted in 2002 as Title III of the E-Government Act of 2002 (Pub.L. 107–347 (text) (PDF), 116 Stat. 2899). The act recognized the importance of information security to the economic and national security interests of the United States. The act requires each federal agency to develop, document, and implement an agency-wide program to provide information security for the information and information systems that support the operations and assets of the agency, including those provided or managed by another agency, contractor, or other source. FISMA has brought attention within the federal government to cybersecurity and explicitly emphasized a "risk-based policy for cost-effective security." FISMA requires agency program officials, chief information officers, and inspectors general (IGs) to conduct annual reviews of the agency's information security program and report the results to Office of Management and Budget (OMB). OMB uses this data to assist in its oversight responsibilities and to prepare this annual report to Congress on agency compliance with the act. In FY 2008, federal agencies spent $6.2 billion securing the government's total information technology investment of approximately $68 billion or about 9.2 percent of the total information technology portfolio. NIST develops standards, metrics, tests, and validation programs to promote, measure, and validate the security in information systems and services. NIST hosts the following: * FISMA implementation project * Information Security Automation Program (ISAP) * National Vulnerability Database (NVD) – the U.S. government content repository for ISAP and Security Content Automation Protocol (SCAP). NVD is the U.S. government repository of standards based vulnerability management data. This data enables automation of vulnerability management, security measurement, and compliance (e.g., FISMA) (en)
dbo:wikiPageExternalLink	http://www.gpo.gov/fdsys/pkg/STATUTE-116/pdf/STATUTE-116-Pg2899.pdf http://www.fismacenter.com/default.asp%3Flnc=resources http://thomas.loc.gov/cgi-bin/bdquery/z%3Fd107:HR03844:@@@X https://www.whitehouse.gov/omb/information-for-agencies/memoranda/ http://fismapedia.org/ http://searchsecurity.techtarget.com/originalContent/0,289142,sid14_gci1059656,00.html https://web.archive.org/web/20110715205614/http:/www.rsam.com/rsam_fisma.htm https://www.gpo.gov/fdsys/pkg/PLAW-107publ347/pdf/PLAW-107publ347.pdf https://www.law.cornell.edu/uscode/text/44/chapter-35/subchapter-II https://csrc.nist.gov/Projects/Risk-Management https://csrc.nist.gov/publications/sp
dbo:wikiPageID	1523470 (xsd:integer)
dbo:wikiPageLength	22101 (xsd:nonNegativeInteger)
dbo:wikiPageRevisionID	1117886556 (xsd:integer)
dbo:wikiPageWikiLink	dbc:United_States_federal_computing_legislation dbr:National_Vulnerability_Database dbr:Attack_(computing) dbr:Republican_Party_(United_States) dbr:Cyberwarfare dbr:United_States_federal_law dbr:Virginia dbr:Department_of_Defense_Information_Assu...rtification_and_Accreditation_Process dbr:Information_Security_Automation_Program dbr:Information_assurance dbr:Information_security dbr:Information_system dbr:Title_44_of_the_United_States_Code dbc:Acts_of_the_107th_United_States_Congress dbr:Computer_Security_Act_of_1987 dbr:Computer_security dbr:SANS_Institute dbr:OMB_Circular_A-130 dbr:Vulnerability_(computing) dbr:George_W._Bush dbr:Government_Accountability_Office dbr:Government_agency dbr:Committee_on_National_Security_Systems dbc:United_States_federal_government_administration_legislation dbr:United_States_House_Committee_on_Oversight_and_Government_Reform dbr:E-Government_Act_of_2002 dbr:FIPS_199 dbr:Federal_Desktop_Core_Configuration dbr:Federal_Information_Security_Modernization_Act_of_2014 dbr:Government_contractor dbc:Security_compliance dbr:System dbr:Threat_(computer) dbr:Information_systems dbr:National_Institute_of_Standards_and_Technology dbr:Office_of_Management_and_Budget dbr:Information_security_management_system dbr:Security_Content_Automation_Protocol dbr:United_States_House_Committee_on_Science,_Space_and_Technology dbr:IT_risk dbr:Thomas_M._Davis dbr:NIST_Special_Publication_800-53 dbr:Cybersecurity dbr:Security_control
dbp:actsRepealed	dbr:Computer_Security_Act_of_1987
dbp:amendments	Replaced by the Federal Information Security Modernization Act of 2014 (en)
dbp:citePublicLaw	107 (xsd:integer)
dbp:citeStatutesAtLarge	aka 116 Stat. 2946 (en)
dbp:colloquialacronym	FISMA (en)
dbp:committees	dbr:United_States_House_Committee_on_Oversight_and_Government_Reform dbr:United_States_House_Committee_on_Science,_Space_and_Technology
dbp:effectiveDate	2002-12-17 (xsd:date)
dbp:enactedBy	107 (xsd:integer)
dbp:introducedby	Thomas M. Davis (en)
dbp:introduceddate	2002-03-05 (xsd:date)
dbp:introducedin	House (en)
dbp:leghisturl	http://thomas.loc.gov/cgi-bin/bdquery/z%3Fd107:HR03844:@@@X
dbp:longtitle	An Act to strengthen Federal Government information security, including through the requirement for the development of mandatory information security risk management standards. (en)
dbp:nickname	E-Government Act of 2002 (en)
dbp:passedbody	House (en) Senate (en)
dbp:passeddate	2002-11-15 (xsd:date)
dbp:passedvote	passed unanimous consent (en) passed without objection (en)
dbp:publicLawUrl	http://www.gpo.gov/fdsys/pkg/STATUTE-116/pdf/STATUTE-116-Pg2899.pdf
dbp:sectionsAmended	(en) § 3501 et seq. (en) § 101 (en)
dbp:sectionsCreated	§ 3541 et seq. (en)
dbp:shorttitle	Federal Information Security Management Act of 2002 (en)
dbp:signeddate	2002-12-17 (xsd:date)
dbp:signedpresident	dbr:George_W._Bush
dbp:titleAmended	44 (xsd:integer)
dbp:wikiPageUsesTemplate	dbt:Abbr dbt:Authority_control dbt:Reflist dbt:Short_description dbt:USBill dbt:USPL dbt:USStat dbt:Usc dbt:Use_American_English dbt:Use_mdy_dates dbt:Usstat dbt:Infobox_U.S._legislation dbt:Usc-title-chap
dcterms:subject	dbc:United_States_federal_computing_legislation dbc:Acts_of_the_107th_United_States_Congress dbc:United_States_federal_government_administration_legislation dbc:Security_compliance
gold:hypernym	dbr:United
rdf:type	owl:Thing
rdfs:comment	The Federal Information Security Management Act of 2002 (FISMA, 44 U.S.C. § 3541, et seq.) is a United States federal law enacted in 2002 as Title III of the E-Government Act of 2002 (Pub.L. 107–347 (text) (PDF), 116 Stat. 2899). The act recognized the importance of information security to the economic and national security interests of the United States. The act requires each federal agency to develop, document, and implement an agency-wide program to provide information security for the information and information systems that support the operations and assets of the agency, including those provided or managed by another agency, contractor, or other source. (en)
rdfs:label	Federal Information Security Management Act of 2002 (en)
owl:sameAs	freebase:Federal Information Security Management Act of 2002 http://viaf.org/viaf/174072006 wikidata:Federal Information Security Management Act of 2002 dbpedia-he:Federal Information Security Management Act of 2002 https://global.dbpedia.org/id/4jQ56
prov:wasDerivedFrom	wikipedia-en:Federal_Information_Security_Management_Act_of_2002?oldid=1117886556&ns=0
foaf:isPrimaryTopicOf	wikipedia-en:Federal_Information_Security_Management_Act_of_2002
is dbo:wikiPageRedirects of	dbr:FISMA dbr:Federal_Information_Security_Management_Act dbr:Federal_Information_Systems_Management_Act_(FISMA)
is dbo:wikiPageWikiLink of	dbr:Cyber-security_regulation dbr:Cyber_Intelligence_Sharing_and_Protection_Act dbr:Cybersecurity_Information_Sharing_Act dbr:University_Place_Office_Building dbr:Information_Technology_Management_Reform_Act_of_1996 dbr:Information_privacy_law dbr:Computer_Security_Act_of_1987 dbr:Off-site_data_protection dbr:Appian_Corporation dbr:Cloud_computing_security dbr:FedRAMP dbr:Federal_Information_Processing_Standards dbr:Federal_enterprise_architecture dbr:Host_Based_Security_System dbr:USA.gov dbr:Cybersecurity_information_technology_list dbr:E-Government_Act_of_2002 dbr:Federal_Information_Security_Modernization_Act_of_2014 dbr:Einstein_(US-CERT_program) dbr:High-performance_Integrated_Virtual_Environment dbr:Business.gov dbr:File_integrity_monitoring dbr:FISMA dbr:Microsoft_365 dbr:National_Cybersecurity_Center_of_Excellence dbr:Mobile_device_management dbr:Security_Content_Automation_Protocol dbr:Systematic_Alien_Verification_for_Entitlements dbr:IT_risk dbr:Shadow_IT dbr:Suzette_Kent dbr:Federal_Information_Security_Management_Act dbr:Federal_Information_Systems_Management_Act_(FISMA)
is dbp:actsAmended of	dbr:Federal_Information_Security_Modernization_Act_of_2014
is foaf:primaryTopic of	wikipedia-en:Federal_Information_Security_Management_Act_of_2002