By William Jackson
April 21, 2010
New standards released today by the White House for reporting under the
Federal Information Security Management Act will require agencies to
shift from paper-based annual reports to real time data feeds of system
status that will be correlated by the Homeland Security Department.
The new requirements are an effort to shift agencies away from
paper-based compliance system to real-time visibility, and shift
investments from recordkeeping to automated security systems.
"Agencies will not spend all of their energy to generate reports,"
federal Chief Information Officer Vivek Kundra told reporters during a
press briefing today. The first agencies will begin reporting under the
new requirements as early as June.
Although the requirements are intended to be met using existing
commercial security products, not all agencies have adequate systems in
place. "Some agencies are going to have to make investment to get their
tools in place," Kundra said.
Register now for HITBSecConf2010 - Dubai, the premier
deep-knowledge network security event in the GCC,
featuring keynote speakers John Viega and Matt Watchinski!