Final answer:
The legislation known as the Federal Information Security Management Act (FISMA) mandates that every federal agency must develop, document, and enforce a program securing its information systems against threats.
Step-by-step explanation:
The legislation that provides a framework for ensuring the effectiveness of information security controls in government, intended to protect government information, operations, and assets from natural or manmade threats, by requiring each federal agency to develop, document, and implement an information security program, is called the Federal Information Security Management Act (FISMA).
FISMA was enacted as part of the Electronic Government Act of 2002. It recognized the importance of information security to the economic and national security interests of the United States. FISMA requires federal agencies to implement a program to provide security for their information and information systems, including those provided or managed by another agency or contractor. The act not only emphasizes the protection of confidential federal information but also manages the economic impact arising due to improper information security and establishes a set of guidelines and standards to achieve an acceptable level of security risk.