Ron Ross led the development
of major security guidelines for protecting federal information and critical
information systems. Those security guidelines, required by the Federal
Information Security Management Act of 2002, define a consistent approach
to setting security controls.
As FISMA implementation project leader, Ross led teams in creating thousands
of pages of guidelines for conducting security assessments, developing
security plans and providing security awareness training. He created a
unified FISMA framework that gives federal agencies a reasonable way to
protect their critical information and information systems.
“Ron’s success in everything he does is his ability to embrace ideas
from many sources and constructively integrate those into his analysis,”
said Joan Hash, chief of the National Institute of Standards and Technology
computer security division.