Free Pricing | JCPenney Coupons | Pizza Hut Coupons | Home Depot Coupons
Security Compliance An Issue For Government And Businesses

Security Compliance An Issue For Government And Businesses

by Rick Turoczy on September 20, 2005

Compliance with the Federal Information Security Management Act, or FISMA, is one of the most daunting challenges that government chief information security officers face this year. Part of the 2002 E-Government Act, FISMA requires each federal agency to develop, document, and implement comprehensive information-security policies and practices to deal with security threats that concern government entities and businesses alike.

Knowing that federal IT security managers are devoting an increasing amount of time and resources to comply with FISMA, systems and security management vendor NetIQ Corp. on Monday introduced FISMA-specific templates for its Security Compliance software suite. The four templates tackle access control, audit and accountability, configuration management, and identification and authentication, automating the IT security-auditing process for federal agencies now required to submit security-related systems assessments annually to the White House’s Office of Management and Budget. The templates produce reports for security managers that indicate their IT systems’ level of compliance and ways in which they can improve their compliance scores.

NetIQ based the templates upon the National Institute of Standards and Technology’s, or NIST’s, SP800-53 guidelines. Finalized in February, SP800-53 outlines the management, operational, and technical safeguards necessary to comply with FISMA. These policy templates expand NetIQ’s library of existing policy templates, which already cover the Sarbanes-Oxley Act, Gramm-Leach-Bliley Act, Health Insurance Portability and Accountability Act, ISO1779, and Center for Internet Security benchmarks.

Security Compliance An Issue For Government And Businesses

Leave a Comment

Previous post:

Next post: