Tired of complaining about how FISMA doesn’t work? Well, do something about it.
Go to the NIST Publications Announcement List and get extremely low-volume (at the most, 1 post per month) email announcements on *tada* new NIST Publications.
For anything in a draft version, there are instructions on how to give NIST feedback. Now the big problem for them is that the people who have a real interest in making comments are all in the government sector. They could use valid feedback from people outside the “inner circle” of government security.
In the words of a past leader of mine, “Don’t criticize unless you have suggestions on how to make it better.” Well, for those FISMA-naysayers (*cough* NPO, rhymes with “CANS” *cough*), this is your chance.