SAN MATEO, Calif. -- Elemental Security, the award-winning pioneer of new technology in enterprise information security, today announced a new policy framework to help federal government organizations measurably improve their compliance with the Federal Information Security Management Act (FISMA).
Based on the U.S. Governments implementation resource guide the National Institute of Standards and Technology (NIST) Recommended Security Controls for Federal Information Systems (Special Publication 800-53) Elementals new policy framework helps organizations adhere to FISMA best practices for network access control and automated security policy management, as well as for systems and software inventory classification as defined in the NIST document Standards for Security Categorization of Federal Information and Information Systems (FIPS Publication 199).
According to Gartner, Government organizations that are required to meet FISMA compliance should use [compliance] as a control framework and for asset clarification. Use compliance as an opportunity to improve operational security not only by defining assets and documenting the current state of the organization, but also by implementing control objectives that drive effective risk analysis and management. Moreover, Organizations should use compliance as an opportunity to implement technologies and processes that improve operational security as well as provide support for FISMA and FIPS 199 compliance.