!!! Overview
[{$pagename}] ([FISMA]) of [2002|Year 2002] is an [Act of Congress] and [United States Federal Law] codified in 44 [U.S.C.] § 3544 (2006) and the Federal Information Security Modernization Act (Still [FISMA])

[{$pagename}] assigns responsibilities to various [agencies|United States Federal Agency] to ensure the [security] of [data] in the federal government. The act requires program officials, and the head of each agency, to conduct annual reviews of information security programs, with the intent of keeping [risks] at or below specified acceptable levels in a cost-effective, timely and efficient manner. 

The [National Institute of Standards and Technology] ([NIST]) outlines nine steps toward compliance with [FISMA]:
* Categorize the information to be protected.
* Select minimum baseline controls.
* Refine controls using a risk assessment procedure.
* Document the controls in the system security plan.
* Implement security controls in appropriate information systems.
* Assess the effectiveness of the security controls once they have been implemented.
* Determine agency-level risk to the mission or business case.
* Authorize the information system for processing.
* Monitor the security controls on a continuous basis.

!! More Information
There might be more information for this subject on one of the following:
[{ReferringPagesPlugin before='*' after='\n' }]
----
* [#1] - [Federal Information Security Modernization Act|https://www.dhs.gov/fisma/|target='_blank'] - based on information obtained 2016-04-09-