Thursday, July 24, 2008

Nextgov introduces security assessment tool for government websites

Over in the US, Nextgov has released an online tool explicitly for US public sector website administrators can use to check the security of their website versus the stipulations of the 2002 Federal Information Security Management Act.

As hackers do not restrict themselves to national boundaries - or to government legislation - this tool is useful for government webmasters around the world as a simple test of their security levels against the standards applied by professional security analysts.

As stated in the Nextgov release,
Nextgov and the SANS Institute, a nonprofit cybersecurity research organization in Bethesda, Md., have teamed up on a Web-based tool. It's designed to provide federal officials a means to compare how secure FISMA says their systems are to what professional security analysts would say. As Alan Paller, director of research at SANS, points out, an agency can get an A on FISMA compliance, but receive an F from security analysts on how secure its systems are.

How secure are your systems?

No comments:

Post a Comment