FISMA and the Risk Management Framework

Index

Note: Page numbers followed by “f” and “t” indicate figures and tables respectively

Accountability, Audit, and Risk Management (AR), 451

Adequate security, 2–3

goals, 70–71

for information systems, 107–108

Advanced Persistent Threat, 358–359

Agencies operating national security systems, 83–85

Agency information security programs, 114

Agency-level POA&M, 225, 308

agency-level reports, 309

agency-wide, 309

required data elements, 310

using unique investment identifier, 309

AP. See Authority and Purpose

Application security, 487–488

Common Criteria for Information Technology Security Evaluation, 489

FIPS, 488–489

NVLAP program, 488

secure configuration checklist, 489–490

AR. See Accountability, Audit, and Risk Management

Assessment

method, ...

Get FISMA and the Risk Management Framework now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

FISMA and the Risk Management Framework by Daniel R. Philpott, Stephen D. Gantz