ITAaPS was recently selected to be provide preparation assistance with a data center to undergo a FISMA assessment. The data center markets to federal agencies.
ITAaPS role will be to recommend security controls based on the FIPS 199 and FIPS 200 standards as well as advise the client on implementation of those controls.
Additionally, ITAaPS is preparing the documentation to facilitate and successfully pass the assessment.
The Federal Information Security Management Act of 2002 (“FISMA”, 44 U.S.C. § 3541, et seq.) is a United States federal law enacted in 2002 as Title III of the E-Government Act of 2002 (Pub.L. 107–347, 116 Stat. 2899). The act recognized the importance of information security to the economic and national security interests of the United States. The act requires each federal agency to develop, document, and implement an agency-wide program to provide information security for the information and information systems that support the operations and assets of the agency, including those provided or managed by another agency, contractor, or other source.
Federal Information Processing Standards (FIPS) are publicly announced standardizations developed by the United States federal government for use in computer systems by all non-military government agencies and by government contractors, when properly invoked and tailored on a contract. The purpose of FIPS is to ensure that all federal government and agencies adhere to the same guidelines regarding security and communication.