Course Description:

Course Learning Objective:

A systems Security manager is responsible for maintaining a plan for site security improvements and progress towards meeting the accreditation;

The learner must ensure the information systems is operated, used, maintained, and disposed of in accordance with security policies and practices and ensure the information system is accredited and certified if it processes sensitive information;

The course will deal with methods for ensuring users and system support personnel have the required security clearances, authorization and need-to-know; are indoctrinated; and are familiar with internal security practices before access to the information system is granted and how to enforce security policies and safeguards on all personnel having access to the for which the he is responsible;

The importance of frequent reviews of audit trails and that audit records are archived for future reference, if required;

Major Topics:

Site security improvement and plan and components

   n Facilities

   n Information Assurance Program Planning

Policies for operation use maintenance and disposal information contained within the assured system.

   n Access Authorization

   n Access Control Model (ACM)

   n Accountability

   n Generally Accepted Systems Security Principles

   n Laws, Regulations, and Other Public Policy

   n Standards of Conduct (SOC)

Accreditation and Certification

   n Accreditation Function

   n Certification Function

Discussion of methods to determine if system support personnel have the required authorization, and need-to-know. Methods of indoctrination and increased awareness of internal security practices before access is allowed

   n Education, Training, & Awareness

   n General Information

   n Operations

   n Personnel

   n Policy & Procedures

Security policies and safeguards for all personnel with access to the Information System

   n Management of the Security Function

   n Oversight

Use, review and archival of Audit Trails.

   n Audit

   n Auditing Tools

   n Configuration Management

   n Policies

Establishment and operation of protective or corrective measures

   n Assessments (surveys, inspections)

   n Environmental Controls

   n Handling Media

   n Intrusion Deterrents

   n Marking of Media

   n Network Security

Management of security failures and reporting to appropriate authorities and senior management

   n Law

   n Security Investigation Procedures

   n Security Violations Reporting Process (incident response)

Reporting and briefing status of systems to senior management. Including status of:

   n Administrative Security Policies and Procedures

   n Organization Specific Security Policies

   n Computer Emergency Response Team (CERT),

Fundamentals of Risk management and assessment.

   n Countermeasures

   n Risks

   n Threats