FISMA Overview

The Federal Information Security Management Act (FISMA) of 2002 is meant to improve computer and network security within the Federal government and affiliated parties such as government contractors.   Among other things, the Act mandates yearly audits.  FISMA imposes a mandatory set of processes that must be followed for all information systems used or operated by a US Government federal agency or by a contractor or other organization on behalf of a US Government agency.

The FISMA Implementation Project was established in January 2003 to produce several key security standards and guidelines required by Congressional legislation. These publications include FIPS 199, FIPS 200, and NIST Special Publications 800-53, 800-59, and 800-60.

A good overview of FISMA and the Implementation Project can be found on the National Institute of Standards and Technology website. To visit this site, please click here.

To download an overview of common regulatory compliance standards other than FISMA that apply to IT infrastructure and systems, please click here.

Ixilix has been certified by an outside auditor for FISMA standards and will provide a copy of the audit report upon request.

Sign Up to receive company updates