Useful Links
The links below serve as helpful background.
FISMA – Federal law mandating increased focus on information security and stronger security controls for information systems in the Federal Executive branch.
Federal Information Security Management Act of 2002
Federal Information Security Modernization Act of 2014
Office of Management and Budget (OMB) – Office responsible for executing the President’s directives in a variety of areas, one of them being federal financial information management.
OMB Memoranda – Memoranda are updated every year, changing the numbers and titles each time. Check this link for the most current memoranda.
National Institute of Standards and Technology – Government organization tasked with arbitrating the standards and producing the publications that govern FISMA.
SP 800-37 (Risk Management Framework)
Federal Information Processing Standards
FedRAMP – Process developed for Cloud Service Providers who want to sell their services to federal agencies.
CIO Metrics – Federal CIO Council’s oversight and assessment concerning cybersecurity of federal agencies by FISMA and agency-specific standards.