Tougher FISMA Cyber-Law Needed

Malicious code attacks on the feds have increased by 47 percent since 2008. The Federal Information Security Management Act (FISMA) requires reports on cyberincidents every three years, but the agency has decided that wasn’t enough.

In an article on the Federal Times website, Rebecca Neal says the State Department has set about to collect data not once every three years, but every 15 days. That’s according to John Streufert, the State Department’s deputy chief information officer for information security.

More frequent reporting of malicious code attacks has allowed the State Department to identify trends and educate computer users on rising threats, Neal writes.

The State Department’s success with increased reporting indicates a need to revise FISMA, says the article, to more proactively prevent threats.

To read the Federal Times article, click here: