What federal act governs the management of information security in federal agencies?

The Federal Information Security Modernization Act (FISMA) is the legislation specifically designed to oversee and enhance the management of information security across federal agencies. Enacted to address the increasing importance of data confidentiality, integrity, and availability, FISMA mandates that federal agencies develop, document, and implement an information security program. This program includes risk management practices, security controls, and regular assessments to ensure the protection of government information systems.

FISMA establishes a framework for securing government information systems and emphasizes the need for continuous monitoring and improvement. By setting stringent requirements for agency compliance, FISMA aims to safeguard federal information from unauthorized access and cyber threats, thus playing a crucial role in national security and the protection of sensitive information.

In contrast, the other options pertain to different domains of U.S. law and policy. The Federal Data Protection Act is not a recognized federal statute in this context. The Securities and Exchange Act primarily regulates securities markets and investor protection, while the Homeland Security Act focuses on the creation of the Department of Homeland Security and related security measures, but does not specifically address the management of information security across federal agencies.