House Approves FISMA

Published: Apr 26, 2012

WASHINGTON, DC — On a unanimous voice vote, the Federal Information Security Amendments Act of 2012 (HR 4257) was approved by the House of Representatives.
“Today’s bipartisan approval of FISMA shows that Congress is serious about our nation’s cybersecurity,” said Rep. Darrell Issa, R-Calif., chairman of the House Oversight and Government Reform Committee and the bill’s lead Republican sponsor. “FISMA 2002 is in desperate need of an update. This legislation will ensure that agencies are better prepared against real threats instead of the monotonous ‘check the box’ activity that FISMA has become.”
The legislation’s lead cosponsor is Rep. Elijah Cummings, D-Md., ranking member of the Oversight Committee
FISMA enhances the Federal Information Security Management Act (FISMA) of 2002 by improving the framework for securing information technology systems.  It also establishes a mechanism for stronger oversight of information technology systems by focusing on automated and continuous monitoring of cybersecurity threats and regular “threat assessments.”  The nature of the threat necessitates automated and continuous monitoring, when possible, of information technology systems.  This capability is already being utilized in some form by agencies, and the severity of the threat requires the eventual progression to achieve real time or near-real time continuous monitoring. 
FISMA is available for review at