Achieving FISMA Compliance: Continuous Monitoring Using Configuration Control and Log Management

Obtaining compliance with FISMA can be daunting, including many complex guidelines and procedures that federal agencies and organizations working with the US government must follow. Learn how Tripwire^® Enterprise and Tripwire Log Center^® help these organizations achieve, maintain and prove continuous FISMA compliance.

For organizations subject to FISMA, this federal IT security compliance program may seem complex and burdensome. And while these organizations may not be penalized with fines, the fact that the Office of the Management and Budget (OMB) withholds funding to agencies or programs that fail compliance audits is a motivating force to gain compliance. In reality, FISMA is a fairly mature and widely accepted IT security program, and organizations that achieve and maintain FISMA compliance boast strong IT security. However, it's equally true that organizations subject to FISMA need help and powerful, automated solutions to address the guidelines and procedures required to gain compliance.

In this paper, you'll learn:

• What FISMA is and who it affects
• The methodology for achieving the security goals of FISMA
• How the focus of FISMA compliance is shifting away from the traditional Certification and Accreditation approach to continuous compliance
• How using configuration control and log management with Tripwire Enterprise and Tripwire Log Center make FISMA compliance easier and more cost-effective.

So download this paper, and then learn how Tripwire IT security and compliance automation solutions can help ease the burden of FISMA compliance.