Foreword

When I was the Chief Information Security Officer at the Department of Veterans Affairs, and then later as the CISO at the Department of Energy, I didn’t like FISMA at all. For a few of my like-minded colleagues and me, it was a distraction that diverted precious resources away from implementing real security programs, all for the sake of paperwork checklists. Even worse, it was born out of a Congress that could no longer batter Executive Branch agencies over Y2K challenges, and needed another vehicle by which to hold grandiloquent hearings and generate histrionic headlines. Thus came the flawed Y2K-like system-by-system, site-by-site approach that was born as GISRA in 2001 and became FISMA a year later.

The more that agencies parsed ...

Get FISMA Compliance Handbook now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

FISMA Compliance Handbook by Laura P. Taylor

Foreword

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly