Federal Information Security Management Act (FISMA)

The Federal Information Security Management Act (FISMA) was enacted in 2002 as Title III of the E-Government Act of 2002 (Public Law (PL) 107-347, 116 Stat. 2899). The act recognized the importance of information security to the economic and national security interests of the United States (U.S.). The act requires each Federal agency to develop, document, and implement an agency-wide program to provide information security for the information and Information Systems (IS) that support the operations and assets of the agency, including those provided or managed by another agency, contractor, or other source.