Skip to main content
FISMA - Federal Information Security Management Act of 2002

Federal Information Security Management Act of 2002


FISMA - Federal Information Security Management Act of 2002

FISMA provides a framework to ensure comprehensive measures are taken to secure federal information and assets.

Signed into law as part of the Electronic Government Act of 2002, FISMA was designed to help protect and increase security around sensitive federal information. The National Institute of Standards and Technology (NIST) helped with the implementation of the act in 2003 and outlined nine steps to compliance for governmental agencies, including defining risk assessment procedures, documentation and implementation of controls, determining risk levels, security monitoring, and more. It is advised that private sector organizations that do, or want to do business, with federal agencies maintain FISMA compliance.

Seeking Clarity?

View the Cybersecurity Dictionary for top terms searched by your peers.

Explore the Dictionary

Related Assets

November 07, 2017

GDPR Part 3: GDPR and the Information Security Program

In this third and final part of the series, we’ll spend some time bringing GDPR and its various requirements back into the information security progra...

See Details

June 05, 2019

Cyber Digital Transformation: Cloud Threat Monitoring and Compliance as-a-Service

Apply continuous adaptive risk and threat analysis to multi-cloud environments to meet compliance and reduce security risk.

See Details

October 20, 2017

Top thoughts for GDPR Third-Party Management

Infosecurity Magazine | October 20, 2017 Your organization is responsible for the conduct of the third parties that store or process your EU citizen’...

See Details

How Can We Help?

Let us know what you need, and we will have an Optiv professional contact you shortly.

Privacy Policy

Stay in the Know

For all the latest cybersecurity and Optiv news, subscribe to our blog and connect with us on Social.


Join our Email List

We take your privacy seriously and promise never to share your email with anyone.

Stay Connected

Find cybersecurity Events in your area.