Subscribe by RSS
FY 2010 Reporting Instructions for the Federal Information Security Management Act (FISMA) and Agency Privacy Management, M-10-15
Issued By: OMB - Effective Date: 04.21.2010, 281.596K, pdf
Abstract: This memorandum provides instructions for meeting your agency's FY 2010 reporting requirements under the Federal Information Security Management Act of 2002 (FISMA) (Title III, Pub. L. No. 107-347). It also includes reporting instructions on your agency’s privacy management program.
The Department of Homeland Security (DHS) will provide additional operational support to Federal agencies in securing Federal systems. DHS will monitor and report agency progress to ensure the effective implementation of this guidance.
For FY 2010, FISMA reporting for agencies through CyberScope, due November 15, 2010, will follow a three-tiered approach. This three-tiered approach is a result of the task force established in September 2009 to develop new, outcome-focused metrics for information security performance for Federal agencies. This task force concentrated on developing metrics that would advance the security posture of agencies and departments.
CyberScope is the platform for the FY 2010 FISMA submission process. CIOs, Inspectors General, and the Senior Agency Officials for Privacy will all report through CyberScope. Microagencies will also report using the automated collection tool. CyberScope training dates for all agencies will be published on the Max Portal page. The due date for FISMA reporting through CyberScope is November 15, 2010.
