Government agencies are being increasingly subject to compliance regulations. Federal agencies are now subject to the provisions of the Federal Information Security Management Act (FISMA), which “requires each federal agency to develop, document, and implement an agency-wide program to provide information security for the information and information systems that support the operations and assets of the agency, including those provided or managed by another agency, contractor, or other source.” FISMA was signed into law in December 2002, and impacts government agencies and their contractors. FISMA contains 17 high level requirements, and is supported by numerous more detailed standards and specifications from NIST, including Special Publications 800-53, 800-53A, 800-59, and 800-60, and by the FIPS 199 and FIPS 200 standards.

Government agencies and their contractors require solutions that enable them to easily assess their compliance with FISMA, and to manage remediation and control testing actions to bring themselves into compliance.

The ControlPath Compliance Suite delivers significant compliance automation functionality, aimed at easing the pain of developing and documenting compliance for government agencies. ControlPath increases the effectiveness and decreases the cost of FISMA compliance for government agencies.