U.S. Department of Health and Human Services
To ensure the Federal Government develops its technological infrastructure and stewards its information assets wisely, various policies govern how HHS handles information security. Policy helps define the what the information security practices are.
For instance, the Federal Information Security Management Act (FISMA) is designed to link the agency’s budget to its performance in improving information security. You can leverage the FISMA reporting requirements to help you improve the security of your system and track the costs to do so.
page 4 of 11
Safeguarding the HHS mission Policy