Letter: Know what the IG wants to get a good grade
Regarding "Agencies find keys to FISMA," a reader writes: Anyone who has been through the FISMA reporting cycle more than once has figured out that the key to a good "grade" is to figure
out what the IG is going to use to measure compliance and work like hell on that. Extras are nice, especially if they have some effect on information security.
What do you think? Paste a comment in the box below (registration required), or send your comment to firstname.lastname@example.org
(subject line: Blog comment) and we'll post it.