FISMA and the Risk Management Framework: The New Practice of Federal Cyber Security

Description

FISMA and the Risk Management Framework: The New Practice of Federal Cyber Security deals with the Federal Information Security Management Act (FISMA), a law that provides the framework for securing information systems and managing risk associated with information resources in federal government agencies. Comprised of 17 chapters, the book explains the FISMA legislation and its provisions, strengths and limitations, as well as the expectations and obligations of federal agencies subject to FISMA. It also discusses the processes and activities necessary to implement effective information security management following the passage of FISMA, and it describes the National Institute of Standards and Technology's Risk Management Framework. The book looks at how information assurance, risk management, and information systems security is practiced in federal government agencies; the three primary documents that make up the security authorization package: system security plan, security assessment report, and plan of action and milestones; and federal information security-management requirements and initiatives not explicitly covered by FISMA. This book will be helpful to security officers, risk managers, system owners, IT managers, contractors, consultants, service providers, and others involved in securing, managing, or overseeing federal information systems, as well as the mission functions and business processes supported by those systems. Learn how to build a robust, near real-time risk management system and comply with FISMA Discover the changes to FISMA compliance and beyond Gain your systems the authorization they need

Get the book

Amazon.com

Search the book

eBay.com

Search the book

Similar books

• 

  FISMA Compliance Handbook: Second Edition

  By Laura P. Taylor

  This comprehensive book instructs IT managers to adhere to federally mandated compliance requirements.

• 

  Mastering the Risk Management Framework Revision 2: A Guide to Implementing Revision 2 of the RMF and Passing the ISC2(c)...

  By Deanne Broad

  This book provides an in-depth look at the Risk Management Framework (RMF) and the Certified Authorization Professional (CAP) (c) certification.

• 

  Risk Management Framework: A Lab-Based Approach to Securing Information Systems

  By James Broad

  Templates provided in the book allow readers to quickly implement the RMF in their organization. The need for this book continues to expand as government and non-governmental organizations build their security programs around the RMF.

• 

  Implementing Cybersecurity: A Guide to the National Institute of Standards and Technology Risk Management Framework

  By Anne Kohnke, Dan Shoemaker, Ken Sigler

  The book provides the complete strategic understanding requisite to allow a person to create and use the RMF process recommendations for risk management.

• 

  Federal Risk Management Framework (RMF): Implementation 3. 0

  By 30 Bird Media

  "Risk Management Framework (RMF) is the unified information security framework for the entire Federal government that is replacing the legacy Certification and Accreditation (C&A) processes within Federal government departments and agencies ...

• 

  Department of Defense Risk Management Framework (RMF)

  By Jr., Ben Tchoubineh, William Alan Matthey

  This book is a complete course on the Federal Risk Management Framework from the Department of Defense perspective.

• 

  Security Controls Evaluation, Testing, and Assessment Handbook

  By Leighton Johnson

  This handbook discusses the world of threats and potential breach actions surrounding all industries and systems.

• 

  Federal Cloud Computing: The Definitive Guide for Cloud Service Providers

  By Matthew Metheny

  Federal Cloud Computing: The Definitive Guide for Cloud Service Providers offers an in-depth look at topics surrounding federal cloud computing within the federal government, including the Federal Cloud Computing Strategy, Cloud Computing ...

• 

  FISMA Principles and Best Practices: Beyond Compliance

  By Patrick D. Howard

  While many agencies struggle to comply with Federal Information Security Management Act (FISMA) regulations, those that have embraced its requirements have found that their comprehensive and flexible nature provides a sound security risk ...

• 

  Federal Risk Management Framework (RMF): Implementation 3. 0, DoD/IC Edition

  By 30 Bird Media

  "Risk Management Framework (RMF) is the unified information security framework for the entire Federal government that is replacing the legacy Certification and Accreditation (C&A) processes within Federal government departments and agencies ...