Computer Hacking Forensic Investigator (CHFI v10) — Question 311

Which among the following laws emphasizes the need for each Federal agency to develop, document, and implement an organization-wide program to provide information security for the information systems that support its operations and assets?

Answer options

• A. FISMA
• B. HIPAA
• C. GLBA
• D. SOX

Correct answer: A

Explanation

FISMA, the Federal Information Security Management Act, mandates that federal agencies establish and maintain an information security program. In contrast, HIPAA focuses on health information privacy, GLBA pertains to financial privacy for consumers, and SOX addresses corporate accounting practices, making them irrelevant to the context of federal agency information security.