Federal Information Security Management Act (FISMA)
| Reviewed By | Internal Auditor Owner |
| Regulation Reference Cite | 44 U.S.C. § 35 |
| Report Due Date (Actual) | N/A |
| Level | Requirement |
| Oversight Unit | CONTROLLERS OFFICE |
| Person Responsible | TBD |
| Secondary Person Responsible | TBD |
| President / VP Level | Finance |
| Description |
The act, applicable to federal agencies, also covers the University as a federal contractor where it is holding federal data pursuant to federally-funded research. The Act requires that the University: 1) implement security programs and policies; 2) assess risk; and 3) periodically test controls. |
| Contacts and Data Sources |
| TBD |