< Compliance
CenturyLink can help with FISMA compliance.


CenturyLink can assist with FISMA compliance by providing a combination of IT services — Cloud, Managed Services and Colocation.

The Federal Information Security Management Act (FISMA) is a comprehensive framework for securing the federal government’s information technology (IT). FISMA provides a set of specific guidelines for federal agencies on how to plan for, budget, implement, and maintain secure systems.

Each federal agency must develop, document, and implement a program to provide security for the data and IT systems that support its operations and assets — including both its own systems as well as those belonging to other agencies, contractors, and others supporting its mission to achieve FISMA compliance. The agency must:

  • Plan for security
  • Ensure that appropriate officials are assigned security responsibility
  • Periodically review IT security controls
  • Authorize system processing prior to operations and periodically, thereafter

Not only do all federal agencies receive an annual “grade” for their FISMA compliance programs, but these grades are also made public. A high grade on the FISMA report card indicates that the agency’s systems are secure; its data is locked down, and provides a public verification of that fact.

In today's environment, security and risk management have become critical to the over all security of our nation. The CenturyLink Government team has been — and will continue to be — an industry leader in working with our federal government agencies and departments to meet this national priority. We have implemented a hierarchy of controls and management tools in the areas of personnel, systems and facility security, each of which are governed by a comprehensive set of security policies, standards, and guidelines.

CenturyLink's extensive experience has shown that, in light of today's ever-changing climate of threats and vulnerabilities, a sound security position is best maintained by adopting a holistic view of risk management. This enterprise-wide approach to risk management, and more specifically, security practices, calls for:

  • Centralized authority and policymaking
  • Clear lines of communication
  • Well-defined expectations
  • Close collaboration among all parties

The Collaboration Model

CenturyLink’s collaboration model, which provides the backbone for rapid identification of new threats and vulnerabilities, creates an action-oriented platform for reducing risks and managing security events. As the cyber threat for federal customers has grown, so has the need for demonstrated security practices to comply with obligations such as FISMA.

To meet these demands, CenturyLink has evolved our security-and technology-related functions to ensure close organizational alignment and collaboration with more traditional industrial security programs.

Related Products

Managed Services

Experts at the ready to maintain and administer your cloud deployments. Rapid provisioning, hourly billing, and highly automated.

Cloud Servers

Enterprise-grade public cloud servers available on-demand for legacy and greenfield business applications.

Managed Hosting

Maintain complex IT infrastructure and applications with our comprehensive portfolio of managed hosting services including, fully manage networks, servers, storage, operating systems, and security.

Bare Metal Servers

The computing power of a physical server, with the automation and pay-as-you-go flexibility of a virtual machine.

Managed Storage & Backups

Gives a range of storage options including data replication and back up/archiving. CenturyLink solutions are secure, affordable and can provide data resilience with up to 5 nines.