Congruity Inspector FISMA Compliance Process

Know your network

The Federal Information Security Management Act (FISMA) requires each federal agency to develop, document, and implement an agency-wide information security program. Compliance requirements include:

• Periodic operational risk assessment associated with the unauthorized access, use, disclosure, disruption, modification, or destruction of information and information systems
• Security awareness training to inform system' users of the information security risks associated with their activities and their responsibilities in complying with organizational policies and procedures
• Periodic testing and evaluation of the effectiveness of information security policies, procedures, practices, and security controls to be performed with a frequency depending on risk, but no less than annually;
• A process for planning, implementing, evaluating, and documenting remedial actions to address any deficiencies in the information security policies, procedures, and practices of the organization;
• Procedures for detecting, reporting, and responding to security incidents;
• Plans and procedures to ensure continuity of operations for information systems that support the operations and assets of the organization.

Congruity Inspector's one-click, self-audit feature places the control in government IT management and stakeholder's hands offering a consistent and repeatable way to document technical and administrative status and verify security compliance. Congruity Inspector delivers the best cost-performance of any audit/threat assessment solution, providing an objective 168 hour IT security profile for about 1 minute of effort.

One-Click FISMA Compliance

Congruity Inspector simplifies FISMA compliance, automating a review and documentation process that identifies threats that leave IT systems and confidential data exposed.