Only $2.99/month

Terms in this set (83)

Government Information Security Reform Act

Amended the Paperwork Reduction Act to implement additional information security policies and procedures. In the text of the act, Congress laid out five basic purposes for establishing
the GISRA:

To provide a comprehensive framework for establishing and ensuring the
effectiveness of controls over information resources that support federal operations

To recognize the highly networked nature of the federal computing environment,
including the need for federal government interoperability, and in the
implementation of improved security management measures, to assure that
opportunities for interoperability are not adversely affected

To provide effective government-wide management and oversight of the related
information security risks, including coordination of information security efforts
throughout the civilian, national security, and law enforcement communities

To provide for development and maintenance of minimum controls required to
protect federal information and information systems
To provide a mechanism for improved oversight of federal agency information
security programs

GISRA also creates a new category of computer system. A mission-critical system meets one of the following criteria:
It is defined as a national security system by other provisions of law. It is protected by procedures established for classified information. The loss, misuse, disclosure, or unauthorized access to or modification of any information it processes would have a debilitating impact on the mission of an agency.