Federal Information Security Management Act (FISMA)

The primary vulnerability management goals of FISMA are to identify potential threats and vulnerabilities, to map implemented controls to individual vulnerabilities, and to determine the risk factor by calculating the likelihood and impact of any given vulnerability being exploited.  

FISMA requires objective assessments of the effectiveness of security controls on every information system operated by, or for (such as a contractor), the federal government on an annual basis. FISMA requires both an internal evaluation and an independent assessment.

eEye Digital Security® helps government agencies assess systems with these features:

• Detecting vulnerabilities before they can be exploited. eEye Digital Security's Retina Vulnerability Scanning Solutions will allow administrators to identify vulnerabilities and security exposures before they can be exploited.

• Mitigation. When Retina finds vulnerabilities, it leads network administrators to the fastest fixes for them using hyperlinks and the latest remediation documentation.

• Ensuring data integrity, availability and confidentiality. eEye Digital Security's frequent updates provide protection from the latest threats and even zero day vulnerabilities.

• Documenting network security compliance. eEye Digital Security reports provide customers with comprehensive records for documenting FISMA compliance and a historical perspective of a network's security posture through delta and trending reports.

• Demonstrating protection from attack. The eEye Digital Security’s Blink Endpoint Protection Platform provides a high level of assurance of protection from an attack.

  More detailed information regarding FISMA can be found at http://csrc.nist.gov/groups/SMA/fisma/index.html