|
Documents
|
OMB Documents and Guidance >Management and Performance
|
 |
Fiscal Year 2008 Report to Congress on Implementation of FISMA 2002
Issued By: OMB - Effective Date: 03.02.2009, 737.009K, pdf
|
|
|
|
|
|
Abstract:
The Federal Information Security Management Act (FISMA) was passed by Congress and signed into law by the President as part of the E-Government Act of 2002 (Pub. L. No. 107-347). The goals of FISMA include development of a comprehensive framework to protect the government’s information, operations, and assets. Providing adequate security for the Federal government’s investment in information technology (IT) is a significant undertaking. In fiscal year 2008, the Federal agencies spent $6.2 billion securing the government’s total IT investment of approximately $68 billion for the fiscal year 2008 enacted level, equating to approximately 9.2 percent of the total IT portfolio. Funds spent on IT security are used for cross-cutting and system-specific security activities such as certification and accreditation (C&A) of systems, testing of controls, and user awareness training.
This report informs Congress and the public on the Federal government's performance against key security and privacy performance measures from fiscal year 2002 through fiscal year 2008. It also provides OMB’s assessment of government-wide IT security strengths and weaknesses, outlines a plan of action to improve performance, and fulfills OMB’s requirement under FISMA to submit an annual report to the Congress.
Data used within this report are based on fiscal year 2008 agency, IG, and privacy reports to OMB. Appendix A contains agency-specific security and privacy performance results for the 25 major Federal agencies. Appendix B provides a summary of FISMA and privacy performance results for small and independent agencies.
|
|
|
Webmaster |
Privacy Statement |
Accessibility Statement |
Contact Us 
USA.gov