CFCP FISMA Compliance Practitioner Exam ExamFOCUS Study Notes & Review Questions on the foundation security knowledge
This book has been updated in September 2020: https://www.amazon.com/dp/153526750X
The Certified FISMA Compliance Practitioner CFCP exam tests for competencies in understanding compliance concepts that are related to the Federal Information Security Management Act FISMA. The exam has 100 multiple choice and true/false questions.
FISMA is a US federal law enacted way back in 2002. It imposes a mandatory set of processes that have to be followed for information systems operated by a government agency or by a contractor which works on behalf of the agency. You want to know that it is FISMA that delegates to the NIST the responsibility to develop detailed information security standards and guidance for federal information systems, with the exception of national security systems. In fact, FISMA also designates to OMB the oversight of federal agencies’ information security implementation. To know FISMA means to know the relevant material developed by NIST and OMB.
If you are relatively new to the field, or if you are progressing from other IS certifications (CISSP, CISA …etc) to CFCP, you will find this book useful for exam preparation purpose. But honestly, unless you have a reasonable amount of real world experience participating in an actual FISMA Compliance Program, you will find the exam very difficult.
