Tweet
The Federal Information Security Management Act (FISMA) is a law designed to protect the security of information stored or managed by government systems at the federal level. The FISMA provides a comprehensive framework for ensuring the effectiveness of information security controls over information resources that support federal operations and assets.
It includes
It includes
- Standards for categorizing information and information systems by mission impact.
- Standards for minimum security requirements for information and information systems.
- Guidance for selecting appropriate security controls for information systems.
- Guidance for assessing security controls in information systems and determining security control effectiveness.
- Guidance for security authorization of information systems.