Each year, federal agencies receive “grades” on a computer security report card, issued by the House Government Reform Committee. It’s based largely on each agency’s compliance with the Federal Information Security Management Act (FISMA). Now, for the first time, the CISOs of those agencies have their chance to grade FISMA. In a survey from Telos Corporation, 60 percent of respondents found FISMA reporting helpful in understanding the state of their department’s IT security, and respondents gave the report card itself a “C” grade.@ The executive summary of Grading the Graders: Examining the True Impact of FISMA is at SM Online.