FISMA & NIST
Independent Assessments for Enhanced Compliance
AssurancePoint offers readiness assessment services (free for new clients), gap remediation guidance, Type 1 attestation assessments (control design as of a point in time), and Type 2 attestation assessments (design and operating effectiveness over a period of time) for organizations seeking an independent examination and reports over a specified NIST framework. Our examinations are conducted in accordance with attestation standards established by the AICPA.
The National Institute for Standards and Technology (NIST) develops standards and control guidelines to help government agencies comply with the Federal Information Security Modernization Act (FISMA). Special Publication 800-53 contains a framework of information security and privacy controls intended for federal information systems and organizations. However, the NIST 800-53 publication has become a popular security control framework broadly accepted in the private sector.