| | |  | JAVA | Home » » » FISMA Certification & Accreditation Handbook | | | | | | | Description: | | The only book that instructs IT Managers to adhere to federally mandated certification and accreditation requirements.
This book will explain what is meant by Certification and Accreditation and why the process is mandated by federal law. The different Certification and Accreditation laws will be cited and discussed including the three leading types of C&A: NIST, NIAP, and DITSCAP. Next, the book explains how to prepare for, perform, and document a C&A project. The next section to the book illustrates addressing security awareness, end-user rules of behavior, and incident response requirements. Once this phase of the C&A project is complete, the reader will learn to perform the security tests and evaluations, business impact assessments system risk assessments, business risk assessments, contingency plans, business impact assessments, and system security plans. Finally the reader will learn to audit their entire C&A project and correct any failures.
* Focuses on federally mandated certification and accreditation requirements
* Author Laura Taylor's research on Certification and Accreditation has been used by the FDIC, the FBI, and the Whitehouse
* Full of vital information on compliance for both corporate and government IT Managers | | | Product Details: | | | Author:
| L. Taylor | | Paperback:
| 498 pages | | Publisher:
| Syngress | | Publication Date:
| December 12, 2006 | | Language:
| English | | ISBN:
| 1597491160 | | Package Length:
| 8.8 inches | | Package Width:
| 7.0 inches | | Package Height:
| 1.5 inches | | Package Weight:
| 1.45 pounds | | Average Customer Rating:
|  based on 6 reviews |
| | | | Customer Reviews: | |
Average Customer Review:
Write an online review and share your thoughts with other customers.
FISMA PrepNov 22, 2009
I thought it was a great introduction to this field that is full of acronyms
0 of 6 found the following review helpful:
 Poorly written, outdated, don't waste your timeApr 20, 2009
This book is poorly written and outdated. There is very little relevance to what is currently happening in the world of C&A. If you cannot understand 800-37 rev1 you should not be doing this work in the first place. You are wassting your time to try to use this book as a method to learn and impliment a C&A program.
5 of 5 found the following review helpful:
 Excellent FISMA BookFeb 08, 2009
This has to be the hands-down, best FIMSA C&A book that I have seen on the market. It not only covers the NIST standards, but others such as DCID. It provides the reasons why, the how top's, and excellent checklists to determine if you are on track, or lost in the details of C&A. Many people are lost when it comes to C&A, but this book will provide the necessary bread crumbs to bring C&A home ! I recommend this book for experts as well as novices, only because it provides the very basic's that we sometimes forget.
If you are interested in INFOSEC/Information Assurance and attempting to understand the voodoo of C&A, this book is a good resource to start your journey !
6 of 6 found the following review helpful:
Excellent ReferenceMar 31, 2008
I bought this book because I needed to know how to get through the C&A process from start to finish. I'd read some of the NIST publications, and although they are great publication, they really don't tell you where to start, and what to do next. The NIST pubs also don't have very many practical examples in them. Some of the things I like best about this book are the checklists, the templates, and the fact that it is written so that it is easily understandable. It is not written using geek-o-snob rhetoric that make many computer books difficult to understand.
7 of 8 found the following review helpful:
Good FISMA ReferenceMar 21, 2007
'Fisma Certification & Accreditation Handbook' isn't the type of book that you would pick up for weekend reading but it covers the material that it says it does. Dry and dull it may be, but if you work with this subject matter this is a good reference.
****
| | |
|
