Follow Liquidmatrix

FacebookTwitterRSS

Subscribe by Email

Drive By: NIST updates information security guidelines

bulletholes

From Nextgov:

The first revision to Special Publication 800-37 — “Guide for Applying the Risk Management Framework to Federal Information Systems: A Security Life-Cycle Approach” — will help agencies comply with the 2002 Federal Information Security Management Act, which requires them to identify and take inventories of their IT systems and determine the sensitivity of information stored on those systems. FISMA has long been criticized for focusing too heavily on compliance and not enough on monitoring and testing of computer systems for vulnerabilities.

Article Link

(Image used under CC from LordSchrammi‘s Flickr stream)

Posted by on November 18, 2009. Filed under Education,Information Security. You can follow any responses to this entry through the RSS 2.0. You can skip to the end and leave a response. Pinging is currently not allowed.

Leave a Reply

Your email address will not be published. Required fields are marked *

*

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>