If you are responsible for meeting federal information security requirements such as FISMA, this book is all you need to know to get a system authorized. Now in the first full revision of FISMA since its inception in 2002, a new wave of stronger security measures are now available through the efforts of the Department of Defense, Office of the Directory of National Intelligence, Committee for National Security Systems and the National Institute of Standards and Technology. Based on the new FISMA requirements for 2011 and beyond, this book catalogs the processes, procedures and specific security recommendations underlying the new Risk Management Framework. Written by an experienced FISMA practitioner, this book presents an effective system of information assurance, real-time risk monitoring and secure configurations for common operating systems. Learn how to build a robust, near real-time risk management system and comply with FISMADiscover the changes to FISMA compliance and beyondGain your systems the authorization they need.
Note
Publisher supplied information; title not viewed.
Bibliography
Includes bibliographical references and index.
Contents
Introduction -- Federal information security fundamentals -- Thinking about risk -- Thinking about systems -- Success factors -- Risk management framework planning and initiation -- Risk management framework steps 1 & 2 -- Risk management framework steps 3 & 4 -- Risk management framework steps 5 & 6 -- System security plan -- Security assessment report -- Plan of action and milestones -- Risk management -- Continuous monitoring -- Contingency planning -- Privacy -- Federal initiatives.
