How to get started with continuous monitoring

July 1, 2010 — This week’s Federal Security Spotlight features Jerry Davis, the chief information security officer for NASA.

He made headlines recently when he changed how NASA CIOs are to go about meeting their Federal Information Security Management Act (FISMA) reporting.

Turns out, certification and accreditation is not actually required under FISMA, so he is having the NASA components move to a process called accreditation.

Register for the Ask the CIO Chat with Andy Ozment of the Homeland Security Department on Oct. 11, at 1:30 p.m.

He also joins a few other agencies in instituting continuous monitoring of networks, and making sure critical security patches are up to date.