Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Information-Security-News
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[ISN] OMB unveils FISMA how-to

from [InfoSec News] Network Security [Permanent Link]
Subject: [ISN] OMB unveils FISMA how-to
Date: Mon, 30 Aug 2004 02:02:54 -0500 (CDT) 
http://www.fcw.com/fcw/articles/2004/0823/web-fisma-08-27-04.asp

By Florence Olsen 
Aug 27, 2004 

Office of Management and Budget officials this month released final
instructions to federal agencies for filing mandatory reports on their
systems security efforts in 2004. [1]

The annual compliance reports, a requirement under the Federal
Information Security Management Act, must be filed by Oct. 6, this
year. The 28 pages of instructions include a reporting template and
expanded definitions of terms and concepts associated with FISMA.

OMB Director Joshua Bolten noted in his instructions that all security
requirements established by FISMA apply to all agencies, regardless of
their size. The reporting requirements for small agencies, which OMB
officials define as microagencies, are slimmed down, he said. But the
actual security requirements are the same for all agencies.  
Microagencies are ones with fewer than 100 employees.

Any organization that operates, uses or simply has access to federal
information systems must also comply with FISMA, Bolton reminded
agency officials. Contractors, grantees, state and local governments,
industry partners-none are exempted, the OMB guidelines state.

The new guidelines also give federal agencies a Sept. 15, 2005,
deadline for categorizing their transactions systems according to
recommended user-authentication levels published by the National
Institute of Standards and Technology. The technical recommendations
for verifying users' identities online appear in NIST Special
Publication 800-63.

[1] http://www.cio.gov/documents/FY04%20FISMA%20reporting%20instructions.doc



_________________________________________
Open Source Vulnerability Database (OSVDB) Everything is Vulnerable - 
http://www.osvdb.org/
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • [ISN] OMB unveils FISMA how-to, InfoSec News <=
Previous by Date:  [ISN] FBI busts alleged DDoS Mafia, InfoSec News
Next by Date:  [ISN] Clarke Touts Broad Approach To IT Security, InfoSec News
Previous by Thread:  [ISN] FBI busts alleged DDoS Mafia, InfoSec News
Next by Thread:  [ISN] Clarke Touts Broad Approach To IT Security, InfoSec News
Indexes:  [Date] [Thread] [Top] [All Lists]