<
 
 

Government Regulatory Compliance

Government agencies and service providers are under increasing pressure to make security a top priority. However, like most organizations there is a tangled web of expectations, challenges and financial concerns.  The Federal Information Systems Management Act of 2003 was designed to help federal agencies implement a number of common best practices for information management and security.  However, FISMA is also an emerging set of requirements. Gaining accreditation and certification in FISMA is a challenge for all government agencies. The Federal Information Processing Standards along with CERT special publications are all driving FISMA. Moreover, FISMA is rapidly serving as a template for state, regional, and local governments for their security and IT management needs.

Anitian uses our exclusive Industry Security Maturity ProfilesTM (ISMP) to analyze and audit your environment for compliance with FISMA and its associated policies and standards. These profiles combine established security standards such as ISO17799, CobiT and ITIL with the FISMA and CERT standards to provide a financial institutions a focused maturity profile.  Using this profile, our team can audit your security posture in comparison to other, similar government organizations, thus providing an audit that is uniquely relevant to your organization.

Our typical FISMA audit includes:

  • Organizational Analysis
    Anitian conducts an analysis of your entire organization and how it uses, manages, procures, and delivers IT services.

  • Infrastructure Analysis
    Anitian's veteran network engineers review the infrastructure for best practices and security.

  • Policy and procedure review
    Review of all organization security policies and procedures for alignment with standards.

  • Security assessment
    Assess networks, systems and access for security weaknesses.

  • Standards Adherence
    Analyze business against established standards using Anitian's exclusive Industry Security Maturity ProfilesTM.

  • Homeland Security Review
    If applicable, Anitian reviews systems or procedures for compliance with Homeland Security initiatves.

  • Compliance with other regulations
    Review environment for compliance with other regulations such as the Health Insurance Portability and Accountability Act (HIPAA), the Gramm-Leach-Bliley Act (GLBA) and the Sarbanes-Oxley Act.

  • Remediation Reporting
    Report results of audit and develop remediation measures. Anitian's reports include high-level executive reporting as well as detailed, technical reports.

  • Implement Security Improvements
    Architect and implement necessary security improvements.

  • Train & Educate Staff
    Educate staff on proper security practices and procedures.

  • Assist with accreditation
    Anitian can assist IT staff with the accreditation process.

  • Monitoring
    On-going monitoring and validation to ensure compliance.

The result is a comprehensive and rigorous process that ensures your agency meets all requirements and can easily gain FISMA accreditation. Anitian has performed assessments for numerous government agencies at the federal, state, regional, and local-level.

For additional information, please contact info@anitian.com.

Services

> Services Home

> Overview

> Audit & Assessment

  - Risk Assessments

  - Penetration Testing

  - Compliance

 > Remediate & Optimize

   - Identity Management

   - Policy Development

   - Network Engineering

   - Systems Integration

   - Training & Education

   - Technical
     Documentation

> Monitor & Govern

   - Validation & Reporting

   - Managed Security

   - SecureLink for Small
     Business

   - Incident Response
     & Forensics

   - Emergency Response

 

  
 

All material in this web site is copyright © 1995-2006, Anitian Corporation. All Rights Reserved Worldwide
Please read our copyright and privacy policy page for more information.