The E-Government Act (Public Law 107-347) passed by the 107th Congress and signed into law by the President in December 2002 recognized the importance of information security to the economic and national security interests of the United States. Title III of the E-Government Act, entitled the Federal Information Security Management Act (FISMA) requires each federal agency to develop, document, and implement an agency-wide program to provide information security for the information and information systems that support the operations and assets of the agency, including those provided or managed by another agency, contractor, or other source.
The Federal Information Security Management Act of 2002 (“FISMA”, 44 U.S.C. § 3541, et seq.) is a United States federal law enacted in 2002 as Title III of the E-Government Act of 2002 (Pub.L. 107–347, 116 Stat. 2899). The act recognized the importance of information security to the economic and national security interests of the United States.
FISMA requires that federal agencies implement and document programs to protect the confidentiality, integrity and availability of their IT systems, operations and assets. SAINT provides a wide range of capabilities to interoperate within the federal space, to identify, assess, prioritize security activities, and protect your most critical assets.
SAINT provides direct support to two of the FISMA controls:
- CA – Security Assessment and Authorization (CA-7 Continuous Monitoring)
- RA – Risk Assessment (RA-3 – Risk Assessment; RA-5 – Vulnerability Scanning)