IT Security Office and the Senior Information Security Officer
Develops and manages the GSA information technology (IT) security program. Provides the services and expertise across the agency to implement and maintain the IT security program. Establishes and promulgates IT security policies, procedures, controls, and guidelines. Ensures that new vulnerabilities are mitigated in a timely manner. Manages the annual Federal Information Security Management Act (FISMA) assessment process. Conducts continuous monitoring of GSA systems and addresses incidents. Provides and monitors required security training for GSA employees.
For more information, please refer to GSA's Information Security Applicability, Systems Requirements, IT Systems Responsibilities and Applicable IT Legal and Regulatory Requirements.