Information Security Program Requirements (3544)

The entry outlines the requirements for a federal agency's information security program under the Federal Information Security Modernization Act of 2014, 44 U.S.C. 3551 et seq. It specifies policies, risk assessments, training, continuous monitoring and incident response needed to protect federal information systems.