The Federal Information Security Management Act (FISMA)

Requires agencies to integrate IT security into their capital planning and enterprise architecture processes at the agency, conduct annual IT security reviews of all programs and systems, and report the results of those reviews to the Office of Management and Budget (OMB).

See NIST SP 800-65 for more information.

Share this Post