The Federal Regulatory Compliance Matrix is a compilation of regulatory requirements assembled by the Industry Advisory Council (IAC’s) Security and Privacy Special Interest Group (SIG) – Compliance Committee.  This group of information security experts from private industry prepared this matrix as a central guide to assist federal information assurance and cybersecurity professionals with the management and documentation of regulatory compliance requirements that federal agencies generally encounter in their daily operations.  This matrix is intended to act as a:

• Reference to the applicable information security regulations correlated by function
• List identifying where possible functional overlap exists across each of the regulations
• Model for the consolidation of compliance certification and accreditation initiatives that will minimize redundant certification and accreditation (C&A) or verification and validation (V&V) work
• Void/gap identifier pointing to functional areas not covered by a given regulation

 This release of the matrix covers the following federal regulations:

• ISO17799
• FISMA
• HIPAA
• DITSCAP (DoD)

Updates to the matrix may include coverage of the following additional regulations depending on requests from agencies:

• ISO 17999
• Sarbanes-Oxley (SOx)
• DIACAP
• NIACAP (Civilian Federal)
• National Industrial Security Program Operations Manual (NISPOM) JFAN63
• Common Criteria (vendor compliance for DoD and some Civilian)
• NSTISSP-11

Argosy Omnimedia, Inc. (“Argosy”) is an enterprise information technology consulting, cybersecurity, custom software development and integration company. Since the formation of the company in 1997, Argosy has been engaged by 40 clients throughout the public and private sector Healthcare, Life Sciences, Airline, Retail, Investment/Finance, Chemicals, Energy, Entertainment, and Digital Media to lead or support their enterprise IT initiatives and projects. Argosy has built a strong track record in applying IBM, Microsoft, Sun, Oracle, and Java technology to help clients address their mission critical business and research needs and enabling them to exceed their business objectives. Argosy’s information management and technology development practice encompasses a full range of services for the information technology (IT) life-cycle beginning with business concept development and expanding into comprehensive turn-key, secure, implementation with end-to-end project management ownership.   

For more information, contact:

Rob Montgomery
6701 Democracy Blvd., Suite 300

Bethesda, MD 20817

301.816.9373(O)
240.597.0834 (F)
rob.montgomery@argoc.com