Full description not available
D**E
Great Compliance Book
Good information
L**D
To the point - Great Resource
As a security practitioner with over 18 years of professional experience I recently found myself in a situation where I needed to implement FISMA from the ground up in an organization that never had anything similar. Typically I have been brought in to perform vulnerability scans/pen tests and implement various controls. This book covers the A-Z of what you need to know, without fluff, to get a FISMA program up and running. You will need additional material for your chosen risk management/FedRAMP, and obviously for implementation of the individual controls - but this tells you what you need to know, and more importantly in the specific language that is so important to adhere to. Note that FISMA, IRS-1075, MARS-E and other governance are all the same process under different names - and in our case it is MARS-E as required by CMS under ACA. Word for work identical to FISMA.
M**L
NIST RMF for outside contractors
I bought this book to learn more about the NIST RMF as it applied to contractors and sub-contractors and not FISMA specifically. This gave me a good idea of how FISMA works and also has a few sections talking specifically about how to apply these concepts to non-federal organizations. This helped a lot to put all of these requirements into context. I would highly recommend this book to anyhow who is just starting out in this space and would like something to give them a starting point.
W**N
Really helpful for Information Assurance questions, packages, policy and procedure development.
I haven't finished this, but am tapping and highlighting as I go through. I am using this to help me with my Masters in IA, as well as at work in understanding why and how we do things the way we do.It explains the history of the instructions, and gives great details on several of them. I can see that the information is current and follows the guidance of several others that I work with who have been doing this for quite some time now.What I have found is that people above me don't understand FISMA compliance, and how it is driving IA at our organization. Understanding FISMA and the instructions will only help me to do much better at my job.
M**O
Surprisingly readable
I anticipated reading Laura Taylor's book with dread, expecting dull writing by a hack on an even duller subject, federal regulation, but Laura Taylor is talented and as a result this book is pleasant reading.
B**T
Best FISMA book I have picked up
This book was perfect. I needed to understand the issues and from the expert in the industry. I'm glad I bought it.
C**E
Five Stars
Great!
L**.
For anyone looking to learn more about FISMA
My wife bought this for a class she is taking, so far so good. very detail, just that its really expensive.
Trustpilot
4 days ago
1 day ago
