NIST SP800 65.pdf

With the release of the Federal Information Security Management Act (FISMA) in 2002, the need for information technology (IT) security guidance within the federal community has increased. Capital planning was once seen as applying primarily to IT systems. With FISMA underscoring the emphasis on IT s