White Paper
FISMA: Securing Federal Systems and Data with Tripwire
Currently continuous monitoring is at the center of proposed Federal Information Security Management Act (FISMA) reform - transforming it from a paperwork exercise to an ongoing assessment of risk. NIST defines continuous monitoring as "an important activity in assessing the security impacts on an information system resulting from planned and unplanned changes to the hardware, software, firmware, or environment of operation (including threat space)"*. But planned and unplanned changes represent a lot of noise data. To properly understand your security posture, and assess the risk of your environment - federal agencies should be alerted on bad changes that create security vulnerabilities, and then automate configuration corrections to defend the network. Read how Tripwire provides the best-in-breed continuous monitoring solution that detects, corrects and protects your data and network.
*Source: NIST FISMA FAQ, http://csrc.nist.gov/groups/SMA/fisma/faqs.html
Related Tripwire Resources You Might Be Interested In:
- Reducing Federal Systems Risk with the SANS 20 Critical Controls Read
- Implementing Continuous Compliance for NIST Requirements Read
- Continuous Monitoring: What It Is, Why It Is Needed, and How to Use It Read
- Risk Mitigation Through Continuous Monitoring Watch
- Zero Day Response: Strategies for Cyber Security Watch
- Does Continuous Monitoring solve your Security Problem? Watch
- Achieving FISMA Compliance: Continuous Monitoring Using Configuration Control and Log Management Read
- Automating FISMA Compliance with Tripwire Enterprise Watch
Sign In
to register for this White Paper