Now five years old, the Federal Information Security Management Act (FISMA) elicits varied reactions among Federal agency decision makers and the contractor community. While some rightly argue there is ample room for improvement in terms of how well the directive is protecting the government’s information assets, there is also no questioning it has led to tangible security improvements to date.
Beyond improving government-wide awareness and accountability, what many find extremely valuable is the fact FISMA has standardized the way information security is measured. It is this benchmarking function that some are looking to extend to Federal Green IT practices. Jill Aitoro of NextGov, the online spin-off of Government Executive Magazine, posted yesterday a summary of comments made by Raymond Cline, vice president of the infrastructure service line at IT contractor EDS, at a panel discussion at the Interagency Resources Management Conference in Cambridge, Md.