FISMA 2014: Updates to NIST 800-53 v4

The annual Federal Information Security Management Act (FISMA) report to the US Congress was released by OMB in May 2014. The report represents a security health check on one of the largest organizations in the world—the US federal government. Any security threat or event that has occurred around the world has probably occurred at the US government level. 

NIST SP 800-53 version 4 includes some fairly major changes to the guidance intended to accommodate the inevitable changes in organization, technology and business processes. This whitepaper reviews the changes and updates, and provides key takeaways for agencies, security officers and compliance personnel.