Newsletters Welcome, Guest Log In | Register


Join the Community

Exchange

Get full access to our community's expertise and resources.

Register Now >

Currently Being Moderated

Minimum Security Requirements for Federal Information and Information Systems

0

Created on: Oct 30, 2009 10:25 AM by NIST - Last Modified:  Oct 30, 2009 10:25 AM by NIST

The E-Government Act of 2002 recognized the importance of information security to the economic and national security interests of the United States. Title III of the E-Government Act tasked NIST with the responsibility of developing security standards and guidelines for the federal government including the development of standards for categorizing information and information systems collected or maintained by or on behalf of each federal agency based on the objectives of providing appropriate levels of information security according to a range of risk levels; guidelines recommending the types of information and information systems to be included in each category; and minimum information security requirements for information and information systems in each such category.

This research guide specifies minimum security requirements for information and information systems supporting the executive agencies of the federal government and a risk-based process for selecting the security controls necessary to satisfy the minimum security requirements. This standard will promote the development, implementation, and operation of more secure information systems within the federal government by establishing minimum levels of due diligence for information security and facilitating a more consistent, comparable, and repeatable approach for selecting and specifying security controls for information systems that meet minimum security requirements.

The attached Zip file includes:

• Intro Page.doc

• Cover Sheet and Terms.pdf

• Minimum Security Requirements for Federal Information and Information Systems.pdf

Related Knowledge Network Content

Average User Rating
(0 ratings)




Add a comment Leave some feedback about this document.

There are no comments on this document

IT Manager Development Library

Learn all the basics of IT Management: budgeting, staff motivation, business planning and more with this unique eBook bundle.

Learn more >

The IT Service Catalog Management Toolkit

Bridge the IT-business gap once and for all! A well documented IT services catalog is the conduit for IT services to the rest of the company.

Learn more >

Pen-based Computing in Higher Education

This video takes a look at the impact pen-based computing with tablet PCs is having on higher education and why IT professionals in higher education should introduce this technology to key decision makers.

Pulse2010: The Premier Service Management Event

Attend Pulse 2010, a four-day, on-location event, and discover how a dynamic infrastructure and service management platform can drive your enterprise's success in the new global economy — plus much, much more!