HOME > SECURITY RESOURCES > WHITE PAPER ABSTRACT
These library resources require an Ounce Labs ID. Log in or register.
Securing the Public Sector:
The Need for Secure Software for Government Agencies
Today more than ever, information security is at the top of the agenda for many government agencies. FISMA and DITSCAP/DIACAP regulations require government IT staff to assess the levels of risk to their software and systems, to implement appropriate security controls, and demonstrably improve security. These regulations recognize that, while protective network-level technologies are part of an agency's critical infrastructure, they do not fundamentally address the risk presented by software security vulnerabilities. It is only through thorough software vulnerability assessments that the government can address the underlying vulnerabilities which can jeopardize the integrity of critical data.
This paper will discuss the need for analyzing and auditing the software driving federal organizations, and how agency leaders can use this information to specifically report on software risk and remediation efforts in order to prove compliance with federal regulations.