Computer Crime Research Center


Internet security: technologies and solutions

Date: December 04, 2005

Internet Security Systems, Inc has announced it is offering government agencies a complete set of products and services for assessing security needs and complying with the Federal Information Security Management Act (FISMA).

Through the ISS FISMA Compliance Solution, ISS is the only security vendor to offer a FISMA solution based on an integrated, end-to-end process that encompasses all aspects of security planning, management and compliance reporting across an entire agency.

Instead of simply providing technology tools to help agencies meet compliance, ISS’ FISMA solution involves a three-step process that closely examines all facets of agencies’ existing assets and programs to significantly improve their overall state of security.

Government agencies face an ever-present risk of Internet threats designed to access and misuse federal information systems. FISMA was designed to strengthen the government’s information infrastructure to improve IT performance, ensure operational continuity and heighten homeland security.

Established in 2002 by Congress, FISMA requires each federal agency to develop, implement and continually report on a program to provide security for the information and systems that support agency operations. Congress releases an annual FISMA report card in early February that grades federal agencies on their compliance efforts and identifies areas that need improvement.

Today, many leading world governments, all major agencies and departments of the U.S. Federal Government and most U.S. state governments already trust ISS to protect their critical online assets. “ISS has a long history of both working with government agencies and helping a wide range of customers meet regulatory compliance standards like HIPAA and Sarbanes-Oxley,” said Kimberly Baker, vice president of federal operations at Internet Security Systems.

“We are now translating our government and regulatory compliance expertise, security best practices and strong enterprise security tools into an effective solution for helping agencies achieve FISMA compliance. ISS believes that true FISMA compliance must go beyond the annual audit to embrace a holistic approach to both FISMA in particular and information security in general.”

In order to offer customers a comprehensive FISMA solution, ISS will also be leveraging relationships with several existing business partners, including professional IT services firm, Knowledge Consulting Group.

“We are confident that our federal IT consulting experience, coupled with the overall security and compliance leadership of ISS, will provide customers a superior option for cost-effectively addressing FISMA compliance needs,” said Dusty Wince, CEO of Knowledge Consulting Group.

ISS’ new FISMA Compliance Solution involves a three-step approach that helps agencies understand their security risks and how they can alleviate weaknesses and improve the quality of their security program.

The first phase is assessment, which involves a comprehensive evaluation of an agency’s security posture, culminating in a detailed roadmap for implementing a security program and compliance improvements.

The second phase is remediation, through which ISS helps agencies implement appropriate ISS products and solutions tailored to their security needs. These offerings include Managed Security Services, Professional Security Services and products from ISS’ Proventia product line, an integrated platform that provides protection from network- and host-based attacks before they impact business assets.

The last phase of ISS’ FISMA Compliance Solution consists of periodic auditing of security and compliance improvements to ensure that agencies achieve satisfactory scores in the annual FISMA report card.

Internet Security Systems, Inc. (ISS) is the trusted expert to global enterprises and world governments, providing products and services that protect against Internet threats. An established world leader in security since 1994, ISS delivers proven cost efficiencies and reduces regulatory and business risk across the enterprise.

ISS products and services are based on the proactive security intelligence conducted by ISS’ X-Force research and development team – the unequivocal world authority in vulnerability and threat research. Headquartered in Atlanta, Internet Security Systems has additional operations throughout the Americas, Asia, Australia, Europe and the Middle East.

For more information visit

This release, other than historical information, includes forward-looking statements made pursuant to the “safe harbor” provisions of the Private Securities Litigation Reform Act of 1995. Some of these forward-looking statements include those describing future compliance solutions not yet released.

The risks and uncertainties which could cause actual results to differ materially from those in the forward-looking statements include, but are not limited to, the following: the level of demand for ISS’ products; product and price competition; the extent to which unauthorized access to and use of online information is perceived as a threat to network security; customer budgets; risks concerning the rapid change of technology; and general economic factors.

These risks and others are discussed in ISS' periodic filings with the Securities and Exchange Commission. These filings can be obtained either by contacting ISS Investor Relations or through the Securities and Exchange Commission's Web site.
Original article

Add comment  Email to a Friend

Copyright © 2001-2013 Computer Crime Research Center
CCRC logo