Which of the following US Acts emphasized a “risk-based policy for cost-effective security” and makes mandatory for agency program officials, chief information officers, and inspectors general (IGs) to conduct annual reviews of the agency’s information security program and report the results to Office of Management and Budget?

Which of the following US Acts emphasized a “risk-based policy for cost-effective security” and makes mandatory for agency program officials, chief information officers, and inspectors general (IGs) to conduct annual reviews of the agency’s information security program and report the results to Office of Management and Budget?

Question:

Which of the following US Acts emphasized a “risk-based policy for cost-effective security” and makes mandatory for agency program officials, chief information officers, and inspectors general (IGs) to conduct annual reviews of the agency’s information security program and report the results to Office of Management and Budget?

Options:

The Electronic Communications Privacy Act of 1986 (ECPA)

The Fair Credit Reporting Act (FCRA)

The Equal Credit Opportunity Act (ECOA)

Federal Information Security Management Act of 2002 (FISMA)

Correct Answer

The Correct Answer for this Question is

Federal Information Security Management Act of 2002 (FISMA)