FISMA Framework and Requirements

The FISMA Framework and Requirements specify the federal government's information-security program under the Federal Information Security Modernization Act of 2014, defining a risk-based approach, continuous monitoring, and agency responsibilities for protecting information systems and data. It establishes standards, guidelines, and reporting procedures to ensure compliance with 44 U.S.C. § 3551 et seq. and to safeguard federal information assets.