Federal Information Security Management Act of 2002

From Biocrawler, the free encyclopedia.

The Federal Information Security Management Act of 2002 (FISMA) was enacted in the United States in 2002. The act was meant to bolster computer and network security within the Federal Government and affiliated parties (such as government contractors) by mandating yearly audits. FISMA has brought attention to cybersecurity within the Federal Government, which had previously been much neglected. At the time of this writing (February 18, 2005) many government agencies received extremely poor marks on the official report card (http://reform.house.gov/UploadedFiles/2004%20Computer%20Security%20Report%20card%202%20years.pdf) (with an average of 67.3%) for 2004, an improvement of only 2.3 percentage points over 2003. This shows a marginal increase in how federal agencies prioritize cybersecurity, but experts warn that this average must increase for the Government to truly protect itself.

Sources

1. Full text of FISMA (http://csrc.nist.gov/policies/FISMA-final.pdf)
2. Report on 2004 FISMA scores (http://searchsecurity.techtarget.com/originalContent/0,289142,sid14_gci1059656,00.html)

Wikipedia (http://en.wikipedia.org/wiki/Main_Page) Federal_Information_Security_Management_Act_of_2002 (http://en.wikipedia.org/wiki/Federal_Information_Security_Management_Act_of_2002) version history (http://en.wikipedia.org/w/index.php?title=Federal_Information_Security_Management_Act_of_2002&action=history) GNU Free Documentation Lizenz (http://en.wikipedia.org/wiki/Wikipedia:Text_of_the_GNU_Free_Documentation_License) CC-by-sa (http://creativecommons.org/licenses/by-sa/2.5/)

---