Meet stringent FISMA compliance mandates
The E-Government Act (Public Law 107-347) passed by the 107th Congress and signed into law by the President in December 2002 recognized the importance of information security to the economic and national security interests of the United States. Title III of the E-Government Act, entitled the Federal Information Security Management Act (FISMA) requires each federal agency to develop, document, and implement an agency-wide program to provide information security for the information and information systems that support the operations and assets of the agency, including those provided or managed by another agency, contractor, or other source.
The Federal Information Security Management Act of 2002 (“FISMA”, 44 U.S.C. § 3541, et seq.) is a United States federal law enacted in 2002 as Title III of the E-Government Act of 2002 (Pub.L. 107–347, 116 Stat. 2899). The act recognized the importance of information security to the economic and national security interests of the United States.
FISMA requires that federal agencies implement and document programs to protect the confidentiality, integrity and availability of their IT systems, operations and assets. SAINT provides a wide range of capabilities to interoperate within the federal space, to identify, assess, prioritize security activities, and protect your most critical assets.
SAINT provides direct support to two of the FISMA controls:
- CA – Security Assessment and Authorization (CA-7 Continuous Monitoring)
- RA – Risk Assessment (RA-3 – Risk Assessment; RA-5 – Vulnerability Scanning)
SAINT’s fully-integrated suite of tools combine the power of vulnerability scanning, social engineering, configuration assessments, penetration testing, asset prioritization, remediation workflows and compliance reporting in a single solution. In addition, SAINT provides interoperability and integration options to increase for Return on Investment (ROI) across your security investment.
- Use SAINT’s pre-defined FISMA vulnerability scan policy, to detect vulnerabilities before they can be exploited. SAINT’s vulnerability assessment will allow administrators to take precautions and bolster network security.
- Reduce time to remediate. SAINT’s strategic dashboards, data drill-down, asset tracking, dynamic data filtering and tutorial guidance decrease the time analyzing data, responding to incidents, taking remediation actions, and thus reducing risk exposures.
- Ensure data integrity, availability and confidentiality. SAINT’s frequent updates provide protection from the latest threats.
- Use SAINT’s pre-defined FISMA Vulnerability Assessment Report reports provide customers with excellent records for documenting FISMA compliance and a historical perspective of a network’s security picture. Sample FISMA Vulnerability Assessment Report
- Demonstrate protection from attack. SAINT’s penetration testing tools provides a higher level of assurance of protection from attack.