FISMA and the Risk Management Framework

FISMA and the Risk Management Framework

Book Description
FISMA and the Risk Management Framework: The New Practice of Federal Cyber Security deals with the Federal Information Security Management Act (FISMA), a law that provides the framework for securing information systems and managing risk associated with information resources in federal government agencies.
Comprised of 17 chapters, the book explains the FISMA legislation and its provisions, strengths and limitations, as well as the expectations and obligations of federal agencies subject to FISMA. It also discusses the processes and activities necessary to implement effective information security management following the passage of FISMA, and it describes the National Institute of Standards and Technology's Risk Management Framework. The book looks at how information assurance, risk management, and information systems security is practiced in federal government agencies; the three primary documents that make up the security authorization package: system security plan, security assessment report, and plan of action and milestones; and federal information security-management requirements and initiatives not explicitly covered by FISMA.

This book will be helpful to security officers, risk managers, system owners, IT managers, contractors, consultants, service providers, and others involved in securing, managing, or overseeing federal information systems, as well as the mission functions and business processes supported by those systems.


CHAPTER 1. Introduction
CHAPTER 2. Federal Information Security Fundamentals
CHAPTER 3. Thinking About Risk
CHAPTER 4. Thinking About Systems
CHAPTER 5. Success Factors
CHAPTER 6. Risk Management Framework Planning and Initiation
CHAPTER 7. Risk Management Framework Steps 1 & 2
CHAPTER 8. Risk Management Framework Steps 3 & 4
CHAPTER 9. Risk Management Framework Steps 5 & 6
CHAPTER 10. System Security Plan
CHAPTER 11. Security Assessment Report
CHAPTER 12. Plan of Action and Milestones
CHAPTER 13. Risk Management
CHAPTER 14. Continuous Monitoring
CHAPTER 15. Contingency Planning
CHAPTER 16. Privacy
CHAPTER 17. Federal Initiatives

Download FISMA and the Risk Management Framework: The New Practice of Federal Cyber Security PDF or ePUB format free

Free sample

Download in .PDF format

Download in .ePUB format

Add comments
Введите код с картинки:*
Кликните на изображение чтобы обновить код, если он неразборчив
Copyright © 2019