Computer Operations Now FISMA Compliant

March 24, 2011 :: Shirley Ross, Information Systems & Computing

ISC’s Computer Operations has received a letter of compliancy for the National Institute of Standards & Technology (NIST) special publication 800-53, required for systems, processes, and infrastructure that relate to the Veteran’s Administration information. The audit covered the steps in the Risk Management Framework outlined in the Federal Information Security Management Act (FISMA) and addressed the security control selection for federal information systems in accordance with the security requirements in the Federal Information Processing Standard. The security rules cover 17 different areas including access control, incident response, business continuity, and disaster recoverability. Compliancy was required to accommodate relocation of racks from the School of Medicine to the ISC Data Center. For more information, please contact Donna Manley at manleydm@isc.upenn.edu.