Feds Slowly Improving In Computer Security
http://www.securitypronews.com/insiderreports/insi [2008-7-9]
Tag : Computer Pad
Security gains by federal agencies shut off numerous existingvulnerabilities, thanks to the demands of FISMA for regular monthlyscans for problems. The paperwork demands have security prosworking in government hoping for a fix for that when Congress looksat FISMA again.
Government Computer News said the paperwork requirements make those pros blanch. One suchpro, GSA Citizen Services and Communications IT security officerRich Kellet, said the reporting takes up nearly four weeks out ofthe year to prepare.
The demands of FISMA also extend to government suppliers. Agenciesseeking services or systems need to ensure that fulfillment of themmeets government standards, specifically the SP 800-53 requirements for security.
No SP 800-53 compliance means no FISMA compliance, somethingsecurity pros in government want to avoid. Paperwork demands noware heavy enough, and there isn't a need to make the situation moredemanding by failing to have vendors involved in the process ofensuring compliance.
Readers may be interested in SP 800-37 , a 69-page document titled "Guide for the Security Certificationand Accreditation of Federal Information Systems." Kellet called ita must-read, and its sections on continuous monitoring deserve alook from anyone in need of codifying a policy on overseeingimportant electronic assets.
Security gains by federal agencies shut off numerous existingvulnerabilities, thanks to the demands of FISMA for regular monthlyscans for problems. The paperwork demands have security prosworking in government hoping for a fix for that when Congress looksat FISMA again.
Government Computer News said the paperwork requirements make those pros blanch. One suchpro, GSA Citizen Services and Communications IT security officerRich Kellet, said the reporting takes up nearly four weeks out ofthe year to prepare.
The demands of FISMA also extend to government suppliers. Agenciesseeking services or systems need to ensure that fulfillment of themmeets government standards, specifically the SP 800-53 requirements for security.
No SP 800-53 compliance means no FISMA compliance, somethingsecurity pros in government want to avoid. Paperwork demands noware heavy enough, and there isn't a need to make the situation moredemanding by failing to have vendors involved in the process ofensuring compliance.
Readers may be interested in SP 800-37 , a 69-page document titled "Guide for the Security Certificationand Accreditation of Federal Information Systems." Kellet called ita must-read, and its sections on continuous monitoring deserve alook from anyone in need of codifying a policy on overseeingimportant electronic assets.
Related News »
In Focus »
footwear exports
Last month, European footwear manufacturers proposed extending anti-dumping measures against ..
B2B Keywords:
International market Chinese Importer Wholesale trade Wholesale products World trade Wholesale distributors International trade Foreign trade Wholesale distributor Importers Import export business Sell online Help u sell Global trade How to market a product Online supplier Wholesale product
International market Chinese Importer Wholesale trade Wholesale products World trade Wholesale distributors International trade Foreign trade Wholesale distributor Importers Import export business Sell online Help u sell Global trade How to market a product Online supplier Wholesale product
Feature Products»
Hot Products: A | B | C | D | E | F | G | H | I | J | K | L | M | N | O | P | Q | R | S | T | U | V | W | X | Y | Z | 0-9
-
-
About Us -
Links -
Privacy Policy -
Terms of Use -
Site Map -
Contact Us -
Call Center: 0086-95105561 © 2007 Tootoo.com -
