- Shopping Bag ( 0 items )
This book will explain what is meant by Certification and Accreditation and why the process is mandated by federal law. The different Certification and Accreditation laws will be cited and discussed including the three leading types of C&A: NIST, NIAP, and DITSCAP. Next, the book explains how to prepare for, perform, and document a C&A project. The next section to the book illustrates addressing security awareness, end-user rules of behavior, and incident response requirements. Once this phase of the C&A project is complete, the reader will learn to perform the security tests and evaluations, business impact assessments system risk assessments, business risk assessments, contingency plans, business impact assessments, and system security plans. Finally the reader will learn to audit their entire C&A project and correct any failures.
* Focuses on federally mandated certification and accreditation requirements
* Author Laura Taylor's research on Certification and Accreditation has been used by the FDIC, the FBI, and the Whitehouse
* Full of vital information on compliance for both corporate and government IT Managers
Certification and Accreditation is growing area of security concern, and is currently mandated by a law known as the Federal Information Security Management Act of 2002 (FISMA). This is the only book that instructs IT Managers how to adhere to these requirements.
Posted May 16, 2007
I bought this book to learn how to do a security audit...even though my company is not required to follow FISMA. After reading this book, it is easy to see why running a network scanner is not enough due diligence to safeguard your systems and networks.Was this review helpful? Yes NoThank you for your feedback. Report this reviewThank you, this review has been flagged.
Posted March 31, 2007
I was assigned to work on a C&A project and really had no idea what to do. This book has helped me so much that everyone seems to think I'm an expert on C&A.Was this review helpful? Yes NoThank you for your feedback. Report this reviewThank you, this review has been flagged.
Posted April 15, 2011
No text was provided for this review.