FISMA Compliance

FISMA Compliance

Overview

The Federal Information Security Management Act (FISMA) requires each federal agency, department, or bureau, or those entities which have outsourced agency business, to develop, document, and implement an agency-wide information security program. FISMA defines information security as protecting information and information systems from unauthorized access, use, disclosure, disruption, modification, or destruction in order to provide integrity, confidentiality and availability. Annual FISMA scorecard evaluations are the important measure for demonstrating a successful FISMA compliance program.