Federal Information Security Management Act

Federal Information Security Management Act definition in Computer Security terms:

Acronym(s): FISMA

Definition(s): Requires agencies to integrate IT security into their capital planning and enterprise architecture processes at the agency, conduct annual IT security reviews of all programs and systems, and report the results of those reviews to the Office of Management and Budget (OMB).
Source(s): NIST SP 800-64 Rev. 2 (NIST SP 800-65)

Title III of the E-Government Act requiring each federal agency to develop, document, and implement an agency-wide program to provide information security for the information and information systems that support the operations and assets of the agency, including those provided or managed by another agency, contractor, or other source.
Source(s): NIST SP 800-63-2
CNSSI 4009-2015 (NIST SP 800-63-2)

Synonym(s): None


reference: CSRC Glossary