The Federal Information Security Management Act (FISMA)

FISMA was enacted in 2002 to increase national security following the events of 9/11. The Act establishes a matrix of responsiblities across every federal agency to establish security when acquiring information technology. The purpose of this research guide is to aid legal researchers in locating and navigating the best resources to understand the obligations under this Act, process and regulations that must be followed through the acquisition and management of information technology, and the performance and attetsation requirements to ensure compliance. The first part of the guide will focus on the newer Act, FISMA, and resources to research it directly. The later portions of the guide will look more broadly at inter-related resources that will be necessary for your research.--Publisher.