FISMA

All federal agencies and their vendors are required to have their IT Systems and Application Certified and Accredited

Title III of the E-Government Act (Public Law 107-347) entitled Federal Information Security Management Act (FISMA) requires that all federal agencies develop and implement an agency-wide information security program designed to safeguard IT assets and data of the respective agency. FISMA is specific in its requirements and mandates that all U.S. federal agencies develop, document and implement an agency-wide information security program that outlines security requirements, security policies, security controls, and risks to the agency. Once the program has been established all systems and applications of the agency must go through a formal Certification and Accreditation process every three years thereafter.

There are generally three methodologies used for Certification and Accreditation initiatives:

• DITSCAP
• NIACAP
• NIST

Namtra recognizes your agencies requirements for compliance with FISMA to ensure Confidentiality, Integrity and Availability of sensitive and classified information and information systems. Our enterprise information security team can help your agency ensure compliance with FISMA and get Certified and Accredited.

Benefits

• Evaluation current Information Security Management System
• Assessment of the threats, including likelihood and impact
• Knowledge of all systems, policies, procedures and practices
• Knowledge of third party, vendor and partner compliance status
• Allows you to focus on your business not security issues
• Access to security experts and industry best practices
• Remediation of identified issues to achieve compliance
• Contingency plans to ensure continuity of operations in the face of a disaster
• Security awareness training and expected rules of behavior for end-users
• An evaluation of the technical, management, and operational security controls
• Procedures for reporting and responding to security incident