Federal Information Security Modernization Act of 2014
E88756
The Federal Information Security Modernization Act of 2014 is a U.S. law that updates and strengthens federal government information security practices by clarifying agency responsibilities, enhancing oversight, and modernizing the framework for protecting federal information systems.
Aliases (3)
Statements (47)
| Predicate | Object |
|---|---|
| instanceOf |
United States federal statute
→
information security law → |
| aimsToImprove |
federal incident response coordination
→
visibility into federal information security posture for oversight bodies → |
| aimsToReduce | cybersecurity risks to federal agencies → |
| amends | Federal Information Security Management Act of 2002 → |
| appliesTo | federal executive branch agencies → |
| assignsResponsibilityTo |
Office of Management and Budget for federal information security policy
→
agency heads for implementing information security programs → |
| clarifiesRoleOf |
Chief Information Officers in information security
→
Inspectors General in evaluating agency information security programs → |
| country |
United States of America
→
surface form: "United States"
|
| designates |
Cybersecurity and Infrastructure Security Agency
→
surface form: "Department of Homeland Security as the lead civilian cybersecurity agency"
|
| encourages | use of automated and continuous diagnostics and mitigation tools → |
| enhances |
coordination of federal civilian cybersecurity operations
→
oversight of agency information security by Office of Management and Budget → |
| establishes | framework for federal information security management → |
| excludes | national security systems → |
| focusesOn |
protection of confidentiality, integrity, and availability of federal information
→
risk-based information security management → |
| implements | requirements for agency-wide information security programs → |
| jurisdiction |
United States government
→
surface form: "federal government of the United States"
|
| language | English → |
| legalArea |
IT governance
→
administrative law → |
| primaryGoal |
clarify agency information security responsibilities
→
enhance oversight of federal information security programs → improve protection of federal information and information systems → modernize federal information security management → |
| relatedTo |
Federal Information Security Management Act of 2002
→
National Institute of Standards and Technology information security standards → |
| requires |
continuous monitoring of federal information systems
→
federal agencies to develop, document, and implement information security programs → incident detection and response capabilities → periodic risk assessments of information systems → reporting of information security incidents → |
| requiresReportingTo |
Congress
NERFINISHED
→
United States Department of Homeland Security →
surface form: "Department of Homeland Security"
Office of Management and Budget → |
| sector | public sector information technology → |
| shortName |
Federal Information Security Modernization Act of 2014
→
surface form: "FISMA 2014"
|
| strengthensAuthorityOf |
United States Department of Homeland Security
→
surface form: "Department of Homeland Security"
|
| subjectMatter |
cybersecurity
→
federal information security → protection of federal information systems → |
| supports | federal enterprise-wide cybersecurity posture → |
| year | 2014 → |
Referenced by (8)
Full triples — surface form annotated when it differs from this entity's canonical label.
FBI data governance policies
→
constrainedBy
→
Federal Information Security Modernization Act of 2014
→
this entity surface form: "Federal Information Security Modernization Act"
Office of the Chief Information Security Officer of GSA
→
followsFramework
→
Federal Information Security Modernization Act of 2014
→
this entity surface form: "Federal Information Security Modernization Act (FISMA)"
National Cybersecurity Protection System
→
legalAuthority
→
Federal Information Security Modernization Act of 2014
→
this entity surface form: "Federal Information Security Modernization Act"
Chief Information Officer of the U.S. Department of Labor
→
legalBasis
→
Federal Information Security Modernization Act of 2014
→
National Cybersecurity and Communications Integration Center
→
legalBasis
→
Federal Information Security Modernization Act of 2014
→
Controlled Unclassified Information program
→
relatedTo
→
Federal Information Security Modernization Act of 2014
→
this entity surface form: "Federal Information Security Modernization Act"
Cybersecurity Information Sharing Act of 2015
→
relatedTo
→
Federal Information Security Modernization Act of 2014
→
Federal Information Security Modernization Act of 2014
→
shortName
→
Federal Information Security Modernization Act of 2014
→
this entity surface form: "FISMA 2014"