NIST Site Search
Search NIST.GOV
Custom Search
[Official NIST.GOV TIME]
Product Research

Advertise on this site
Search NIST IT Security
Search For:   Enhanced Query Form
Search In:
  
Results 1 - 1 of 1 in Content
bullet FISMA
Federal Information Security Management Act Implementation Project Protecting the Nation\'s Critical Information Infrastructure “Each...
Posted on Monday 28 November 2005 - 22:00:00 in Regulatory Compliance

bullet Non-Encrypted Hall of Shame
...ata protection within the federal government, how FISMA relates to all this, and the massive finger pointing that is just getting started. Proper enc...
Posted on Wednesday 10 October 2007 - 19:55:58 in Non-Encrypted Hall of Shame

bullet Federal Information Processing Standards (FIPS)
With the passage of the Federal Information Security Management Act (FISMA) of 2002 all Federal Information Processing Standards (FIPS) are now manda...
Posted on Sunday 22 January 2006 - 16:44:21 in NIST.gov Publications

bullet NIST SP 800-37 Guide for the Security Certification and Accreditation of Federal Information Systems
Federal Information Security Management Act (FISMA), requires each federal agency to develop, document, and implement an agency-wide information secur...
Posted on Saturday 21 January 2006 - 22:00:00 in Special Publications - SP 800 series

bullet NIST SP 800-26 rev 1, Security Self-Assessment Guide for Information Technology Systems
... the Federal Information Security Management Act (FISMA) and Office of Management and Budget (OMB) policy, each agency must implement and maintain an ...
Posted on Wednesday 18 January 2006 - 22:00:00 in Special Publications - SP 800 series

bullet NIST SP 800-66 HIPAA Security Rule
...ermissible uses and/or disclosures. Although FISMA applies to all federal agencies and all information types, only a subset of agencies is subjec...
Posted on Tuesday 17 January 2006 - 22:00:00 in Special Publications - SP 800 series

bullet OMB Circular A-130
...nt and compliance with this Circular." Under FISMA all NIST FIPS documents are now required. The 800 series documents are also going to be used ...
Posted on Sunday 11 December 2005 - 22:00:00 in A-130 Compliance

bullet Security
...as we would like. Auditors are now turning to \"best practices\" when judging how well we\'re complying with FISMA requirements.
Posted on Wednesday 30 November 2005 - 17:11:34 in Regulatory Compliance
Results 1 - 1 of 1 in Links
bullet FISMA | Government Computer News - FISMA Compliance Page
An excellent FISMA news portal. This page only contains links to news articles related to FISMA
http://www.gcn.com/FISMA/
Results 1 - 10 of 17 in News
bullet News Release - LogLogic Announces FISMA Control and Compliance Suite Based On NIST For Government Organizations
... the Federal Information Security Management Act (FISMA), adding to the industry's deepest log reporting and alerting capabilities. Offering more tha...
Posted on Sunday 13 May 2007 - 15:19:25

bullet FISMA guidance nearly complete
... NIST’s computer security division. // @@@fisma, nist, gov, sp, 800, 53, federal, information, security, management, act, guidance, guidelines...
Posted on Thursday 01 December 2005 - 04:25:48

bullet New audit management ISO 17799, FISMA compliance software
...major mandates and standards including ISO 17799, FISMA, NERC CIP, GLBA, and HIPAA. The company has also integrated 16 CIS benchmarks into Command Cen...
Posted on Sunday 11 December 2005 - 00:26:53

bullet New FISMA compliance tool by McAfee
...with Federal Information Security Management Act (FISMA) of 2002 and four other federal and commercial regulations. // @@@nist, fisma, fips, gov,...
Posted on Monday 28 November 2005 - 20:31:24

bullet Hardening Microsoft Windows – STIGS, Baselines, and Compliance
...Sarbanes, Oxley, Gramm, Leach, Bliley, Act, glba, fisma, federal, management@@@ Windows hardening is basically locking down and securing the ope...
Posted on Friday 09 February 2007 - 04:09:59

bullet DRAFT Special Publication 800-37 Revision 1 Available
...800-37, 800, 37, sp, risk, management, framework, FISMA, federal, information, systems, technology, nist, sp800, sp-800@@@ To learn more about t...
Posted on Tuesday 17 November 2009 - 20:41:18

bullet U.S. Government Standardizing on Windows Hardening
...ndardized, standards, implementation, guidelines, fisma, 800-53@@@ Few federal agencies have fully implemented NIST.gov, CIS, DISA, or NSA harde...
Posted on Monday 26 March 2007 - 21:33:22

bullet Veterans Affairs Banning Use of Home Computers for Official Business
...ably going to be required to do this anyway under FISMA and to meet their POA&M requirements. It is next to impossible to lock down employee's home co...
Posted on Saturday 10 June 2006 - 21:54:10

bullet Stop Taking Work Home If You Don't Encrypt It!
...You may have thought you could whitewash all that FISMA, A-130, FIPS, etc., compliance stuff but this is for real. You're going to see the hit the f...
Posted on Monday 22 May 2006 - 18:43:51

bullet Government Employee Guilty of Hacking Supervisors Computer
...ss. The auditor had been working on IT Security FISMA audits. // @@@ig, fisma, auditor, department, education, spying, boss, arrested, fired, k...
Posted on Wednesday 01 March 2006 - 19:13:26

Go to page       >>  
Results 1 - 2 of 2 in Forum
bullet As part of thread: Authorizing Oficial?
Forum -> NIST SP 800 Documents
...rnment agencies. Each of them is required by law (FISMA) to have an information security program and have their implementation of the controls assess...
Posted by rriggins on Wednesday 19 August 2009 - 06:55:59

bullet As part of thread: Oracle 10g NIST Controls
Forum -> NIST SP 800 Documents
...started. There are commercially available compliance tools as well such as http://www.integrigy.com/solutions/government-oracle-fisma-stig
Posted by NIST.org on Tuesday 25 September 2007 - 17:47:46
Results in Comments
No matches found
Results 1 - 1 of 1 in Other Pages
bullet FISMA - MANAGING ENTERPRISE RISK
The Nine-Step Process Toward Achieving More Secure Information Systems *Categorize (your information and information system) *Select (the appro...
Posted on Monday 28 November 2005 - 21:25:43
Results in Bugtracker2
No matches found
Translate to: French German Italian Spanish Portuguese GTM_LAN_DUTCH Russian Chinese Arabic Korean English
Latest NIST.org news and comments
Google Ads




Headlines

»Experts to Discuss Botnet Challenges, Steps for Prevention at May 30 Workshop
»A User-Centered Approach to Designing Electronic Health Records
»Comments Requested on Strategies to Mitigate Risk in the Federal ICT Supply Chain
»No Strings Attached: NIST Protocol Helps Communicate Biometrics from Anywhere
»Cloud Computing Forum amp Workshop V Meets June 5-7 at the Department of Commerce
»Creating Usable Electronic Health Records (EHRs): A User-Centered Design Best Practices Workshop
»Iris Recognition Report Evaluates Needle in Haystack Search Capability
»Fifth Annual Health Information Security Conference Runs June 6-7
»NIST Proposes Update to Digital Signature Standard
»April Workshop Focuses on Cybersecurity for Cyber-Physical Systems and Industrial Controls
»New Industry Commitments to Give 15 Million Households Tools to Shrink Their Energy Bills
»NIST Releases Technical Guidance for Evaluating Electronic Health Records
»NIST Announces Funding to Form Steering Group to Support Trusted Identities in Cyberspace
»NSTIC Steering Group FFO Proposers' Webinar
»Guidance on Wireless Local Area Network Security is Close at Hand

Date published: not known
Details

»Apple Releases QuickTime 7.7.2
»Google Releases Google Chrome 19
»Apple Releases Flashback Malware Security Updates
»Apple Releases Multiple Security Updates
»Adobe Releases Security Bulletins for Multiple Products
»Apple Releases iOS 5.1.1
»Microsoft Releases May Security Bulletin
»Microsoft Releases Advanced Notification for May Security Bulletin
»Adobe Releases Security Advisory for Adobe Flash Player
»Google Releases Chrome 18.0.1025.168
»RuggedCom Rugged Operating System Vulnerability
»DNSChanger Malware
»Oracle Releases Critical Patch Update for April 2012
»HP ProCurve 5400 zl Switches Security Bulletin
»Samba Releases Updates for 3.0.x - 3.6.3
»Microsoft Releases April Security Bulletin
»Adobe Releases Security Bulletin for Adobe Reader and Acrobat
»Google Releases Google Chrome 18.0.1025.151
»Cisco Releases Security Advisory for WebEx Player
»Apple Update for Java for OS X Lion and Mac OS X
»Google Releases Google Chrome 18.0.1025.142
»Cisco Releases Multiple Security Advisories
»Adobe Releases Security Advisory for Adobe Flash Player
»Google Releases Google Chrome 17.0.963.83
»Cisco Releases Multiple Security Advisories
»Mozilla Releases Multiple Updates
»Microsoft Releases March Security Bulletin
»Apple Releases Safari 5.1.4
»Google Releases Chrome 17.0.963.79
»Apple Releases Multiple Security Updates

Date published: not known
Details

»U-170: Apple QuickTime Multiple Flaws Let Remote Users Execute Arbitrary Code
Apple QuickTime Multiple Flaws Let Remote Users Execute Arbitrary Code
»U-169: Sympa Multiple Security Bypass Vulnerabilities
Sympa Multiple Security Bypass Vulnerabilities
»U-168: EMC Documentum Information Rights Management Server Bugs Let Remote Authenticated Users Deny Service
EMC Documentum Information Rights Management Server Bugs Let Remote Authenticated Users Deny Service
»U-167: OpenSSL Invalid TLS/DTLS Record Processing Lets Remote Users Deny Service
OpenSSL Invalid TLS/DTLS Record Processing Lets Remote Users Deny Service
»U-166: Adobe Shockwave Player Memory Corruption Flaws Let Remote Users Execute Arbitrary Code
Adobe Shockwave Player Memory Corruption Flaws Let Remote Users Execute Arbitrary Code
»U-165: Apple iOS Bugs Let Remote Users Execute Arbitrary Code and Spoof Address Bar URLs
Apple iOS Bugs Let Remote Users Execute Arbitrary Code and Spoof Address Bar URLs
»U-164: Microsoft Security Bulletin Advance Notification for May 2012
Microsoft Security Bulletin Advance Notification for May 2012
»U-163: PHP Command Parameter Bug Lets Remote Users Obtain Potentially Sensitive Information and Execute Arbitrary Code
PHP Command Parameter Bug Lets Remote Users Obtain Potentially Sensitive Information and Execute Arb ...
»U-162: Drupal Multiple Vulnerabilities
Drupal Multiple Vulnerabilities
»U-161: Citrix Provisioning Services Unspecified Flaw Lets Remote Users Execute Arbitrary Code
Citrix Provisioning Services Unspecified Flaw Lets Remote Users Execute Arbitrary Code
»U-160: Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code
Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code
»U-159: Red Hat Enterprise MRG Messaging Qpid Bug Lets Certain Remote Users Bypass Authentication
Red Hat Enterprise MRG Messaging Qpid Bug Lets Certain Remote Users Bypass Authentication
»U-158: HP NonStop Server Java Multiple Vulnerabilities
HP NonStop Server Java Multiple Vulnerabilities
»U-157: Ruby Mail Gem Directory Traversal and Shell Command Injection Vulnerabilities
Ruby Mail Gem Directory Traversal and Shell Command Injection Vulnerabilities
»U-156: Red Hat update for JBoss Enterprise Portal Platform
Red Hat update for JBoss Enterprise Portal Platform

Date published: not known
Details

»FBI warns against malware installed via hotel networks
Malware poses as fake update of popular software.
»May issue of VB published
The May issue of Virus Bulletin is now available for subscribers to download.
»Android malware served via compromised websites
Malware downloaded automatically, but requires user permission to be installed.
»PayPal spam leads to exploit kit
Clicking on links leads to Blackhole rather than phishing site.
»Significant rise in malicious spam and phishing
Over one quarter of malicious emails contain eight-year-old malware.
»Researchers find many popular sites serving drive-by downloads
10 million people exposed to malware served by 25,000 most visited sites alone.
»Android malware hides inside JPG image
New LeNa variant no longer depends on rooted devices.
»April issue of VB published
The April issue of Virus Bulletin is now available for subscribers to download.
»Microsoft Word for Mac exploit used in targeted attacks
Tibetan NGOs targeted.

Date published: not known
Details

»SCADA/Smart-Grid Vendor Adopts Microsoft's Secure Software Development Program
Meanwhile, utilities lag when it comes to cyberattack preparedness and risk management at the execut ...
»Delete Data To Delete Risk
Smart data-retention policies allow an organization to rid itself of risky data when there's no need ...
»New Fraud Campaign Targets Facebook, Gmail, Hotmail, Yahoo Users
What the attacks share in common, besides being scams, is their use of a specific variant of Zeus
»Time To Deploy The FUD Weapon?
When suffering from compliance fatigue, you may have only one option to getting the funding you need ...
»5 Ways To Lose A Malicious Insider Lawsuit
Making the case against an insider takes preparation and proactive work with HR and legal
»What A DDoS Can Cost
Around 65 percent of IT pros say a DDoS costs their organizations $240,000 in lost revenue per day o ...
»Cyberspies Target Victims Via 'Strategic' Drive-by Website Attacks
Cyberespionage attackers more and more are injecting specific, legitimate websites with malware in h ...
»Number Of Software Pirates On The Rise
Fifty-seven percent of respondents said they've pirated software, according to Business Software All ...
»Network Security Technology Evolving Rapidly, Forrester Says
Review of 17 product categories shows next-generation firewalls on the rise, stand-alone NAC on the ...

Date published: not known
Details
Main Menu
· Home

NIST Security Books
NIST IT Security Books

Training / Books

»Security Certifications -
» CISSP, SSCP, Security+, etc.

»Computer Forensics

»Ethical Hacking

»Malware, Spyware, Viruses

»FISMA Compliance, Policies, etc

»PKI, Encryption, Smartcards

»Windows Security Guides

»HIPAA, SOX, CISP, etc.

NIST.org Security Bookstore
Current Security News
 
SANS Internet Storm Center, InfoCON: green

» Infocon: green

» ISC StormCast for Thursday, May 17th 2012 http://isc.sans.edu/podcastdetail.html?id=2542, (Thu, May 17th)
[16 May 2012 09:03pm]

» Reserved IP Address Space Reminder, (Wed, May 16th)
[16 May 2012 08:58pm]

» Avira Antivirus false positives http://forum.avira.com/wbb/index.php?page=Thread&threadID=144875, (Wed, May 16th)
[16 May 2012 11:02am]

» New Version of Google Chrome released (19.0.1084.46) , (Wed, May 16th)
[16 May 2012 09:00am]

» Microsoft released an update for its Enhanced Mitigation Experience Tool (EMET) http://blogs.technet.com/b/srd/archive/2012/05/15/introducing-emet-v3.aspx, (Wed, May 16th)
[16 May 2012 05:48am]

» Got Packets? Odd duplicate DNS replies from 10.x IP Addresses, (Wed, May 16th)
[16 May 2012 05:48am]

» ISC StormCast for Wednesday, May 16th 2012 http://isc.sans.edu/podcastdetail.html?id=2536, (Wed, May 16th)
[15 May 2012 08:23pm]

» Odd DNS replies from 10 nets and RFC1323 impacting firewalls, (Tue, May 15th)
[15 May 2012 07:21pm]
***
CNET News.com

» Euclid downplays privacy concerns about Wi-Fi tracking
[16 May 2012 06:36pm]

» Flashback makers missed out on their payday, Symantec says
[16 May 2012 05:06pm]

» Facebook IPO doesn't mean the end of privacy
[16 May 2012 04:51pm]

» Microsoft readies NUads: They watch you watching them
[15 May 2012 06:54pm]

» Apple QuickTime update for Windows only; Macs already secure
[15 May 2012 05:50pm]

» Avira update blocked Windows applications
[15 May 2012 03:21pm]

» Bots dominate small Web site traffic, research shows
[15 May 2012 07:00am]

» Rebekah Brooks charged in phone-hacking scandal
[15 May 2012 06:55am]

» Facebook attempts to clear up privacy questions
[14 May 2012 12:47pm]

» After a decade of Windows malware, feel any safer?
[14 May 2012 11:52am]

» After a decade of Windows malware, do you feel any safer?
[14 May 2012 11:52am]

» Kaspersky: Apple needs to face up to Mac threats
[14 May 2012 10:09am]

» Kaspersky probe: Apple working with us on new vulnerabilities, malware
[14 May 2012 10:09am]

» Kaspersky probe: Apple doesn't take security seriously enough
[14 May 2012 10:09am]

» Adobe will issue free security fixes for CS5 apps after all
[12 May 2012 12:55pm]
***
Computerworld Security News

» Smartphone security is heading for 'apocalypse'
[16 May 2012 07:11pm]

» Disaster recovery is a success just waiting to happen
[16 May 2012 06:28pm]

» Utah CTO takes fall for data breach
[16 May 2012 02:00pm]

» Zeus variant tricks Facebook users into exposing card data
[15 May 2012 02:17pm]

» Privacy advocates fear CISPA
[15 May 2012 01:23pm]

» Voyager postpones mobile service launch, citing Web attack
[15 May 2012 01:10pm]

» More Security News
***


***


More IT Security
News Feeds
More Sponsors

Advertise on this site
NIST - Books You Need

NIST Bookstore
RSS Feeds
Our news can be syndicated by using these rss feeds.
rss1.0
rss2.0
rdf
Symantec News
Welcome
Username:

Password:


Remember me

[ ]
[ ]
[ ]

NIST.org is in no way connected to the U.S. government site NIST.gov

This site is © John Herron, CISSP. All Rights Reserved.

Please visit daily to stay up to date on all your IT Security compliance issues.

http://www.nist.org -
Hosted by BlueHost. We've never had a better hosting company.
{THEMEDISCLAIMER}