Rep. Darrell Issa, R-Calif., introduced draft legislation Friday that would reform the 2002 Federal Information System Management Act.
The Federal Information Security Amendments Act of 2012, would provide stronger oversight of federal networks, computers and other information systems by focusing on continuous monitoring of those systems, according to a news release. “FISMA had become a compliance activity, even at times when compliance appeared to supersede security.”
The draft legislation, which is open for comment, defines automated and continuous monitoring as
monitoring, with minimal human involvement, through an uninterrupted, ongoing real time, or near real-time process used to determine if the complete set of planned, required, and deployed security controls within an information system continue to be effective over time with rapidly changing information technology and threat development.
The legislation would require the agency chief information security officer to report “periodically, but no less than annually,” to the agency head about the ” effectiveness of the agency information security program; information derived from automated and continuous monitoring and threat assessments.”
Sens. John McCain, R-Ariz., and Joe Lieberman, I-Conn., introduced competing cybersecurity bills that also call for FISMA reforms.
1 Comment
Is this gonna work?I have a war conflict,Name change.I am from Northeast Ohio,And so far nothing Has worked.I have dealt with ‘Complete Ignorance”,In my State,Since Eliot Ness was Killed In my Neighborhood.It has gotten worse,Since then.All of you should,Look to your Left,and to your Right,And Ask..”Who is Pleading Guilty Today”