From: National Law Review
Jonathan N. Halpern | Foley & Lardner LLP
As part of the Obama administration’s legislative efforts to safeguard government agency information, the Federal Information Security Modernization Act of 2014 (FISMA II) was recently enacted to fortify and update its 2002 version, and adapt procedures to respond to current-era realities of increasingly sophisticated cyber threats. The Act seeks to implement broad security programs, coordinate and expedite agency procedures, and institute greater control, oversight, and preparations as to cyber threats and events.
The objective of FISMA II is comprehensive: to streamline and tighten agency-wide procedures for information controls and make them more efficient and effective. Its legislative directive is also broad: to strengthen federal information security controls; improve management and oversight; increase the managerial role of the United States Department of Homeland Security (DHS), in consultation with the Office of Management and Budget (OMB); and impose new, shorter deadlines for agencies to report security incidents to the U.S. Congress. The Act also establishes a federal information security incident center and requires agencies to undertake periodic risk assessments of their policies and practices.
Relevance and Opportunities for the Private Sector
Leave a Reply