Presentation is loading. Please wait.

Presentation is loading. Please wait.

MCIWEST Information Assurance Mr. David Robbins MCIWEST Information Assurance Manager (Bldg 24200) Camp Pendleton, CA 92055 Comm: (760) 725-2725 DSN:

Published byShania Gayles Modified over 9 years ago

Similar presentations

Presentation on theme: "MCIWEST Information Assurance Mr. David Robbins MCIWEST Information Assurance Manager (Bldg 24200) Camp Pendleton, CA 92055 Comm: (760) 725-2725 DSN:"— Presentation transcript:

1

2 MCIWEST Information Assurance Mr. David Robbins MCIWEST Information Assurance Manager (Bldg 24200) Camp Pendleton, CA 92055 Comm: (760) 725-2725 DSN: 365-2725 BlkBry: (760) 213-0400 david.robbins@usmc.mil

3 MCIWEST Information Assurance 201 (AFCEA…me again?)

4 MCIWEST Information Assurance 201 (AFCEA…me again?)

5 MCIWEST Information Assurance 201 (AFCEA…me again?) …regardless of the reason, here I am!!!

6 MCIWEST Information Assurance 201 (…but before we proceed) Summary of MCIWEST IA 101 (April 2010) Pass IA 101 Certification Exam in order to Proceed to the MCIWEST IA 201 Course!!!

7 MCIWEST Information Assurance MCIWEST Commands +1

8 MCIWEST Information Assurance Command & Organizational Relationships

9 MCIWEST Information Assurance 101 IA Mission & Overview The Marine Corps Information Assurance (IA) division supports expeditionary maneuver warfare extending from the Operating Forces to the Supporting Establishment. Marine Corps IA ensures end-to-end capability to deliver secure information at the right time, to the right place, and in a useable format, allowing commanders to exercise command and communication, regardless of proximity to their assigned forces. The Marine Corps' specific objective for achieving IA is to employ state-of- the-art technology, provide awareness training to all users, and to deploy computer network defense tools across the enterprise. This is achieved by deploying a defense in depth strategy integrating the capabilities of people, sound procedures, and technology to achieve strong, effective, multi-layer and multi-dimensional protection. The goals of the Marine Corps IA division include confidentiality, integrity, availability, authentication, and non- repudiation.

10 MCIWEST Information Assurance 101 IA Goals & Pillars Confidentiality Integrity Availability Authentication Non-Repudiation Protect Information Defend Systems & Networks (CND) Provide SA & IA Command & Cntrl Transform & Enable IA Capabilities Create an IA Empowered Workforce

11 MCIWEST Information Assurance Information Assurance Manager (PD) Develop Mission, Functions, & Responsibilities Define - Refine Command Relationships Identify Issues, Commonalities, & Solutions Develop Regional Policies & Doctrine Allocate resources to installations Set Priorities, Deadlines, & Schedules Interface with other Uniformed Services, Federal Agencies, local governments, and commercial service providers in the region, as directed Scan Legacy, NMCI, & SIPRNET Ensure Scans are sent from each Installation to the REM Server @ CPEN Ensure the REM Server forwards Installation scans to MCNOSC Ensure Remediation is conducted Manage Audit Recods Ensure Arcsight feed is monitored Verify Backups Review POA&M Password Cracking Ensure scanning is completed and reported Conduct Self Assessments Manage War Driving Report COOP activities Ensure Emergency Action Plans are in place and up to date Review System Security Program

12 MCIWEST Information Assurance Information Assurance Manager (PD) con’t Develop Mission, Functions, & Responsibilities Define - Refine Command Relationships Identify Issues, Commonalities, & Solutions Develop Regional Policies & Doctrine Allocate resources to installations Set Priorities, Deadlines, & Schedules Interface with other Uniformed Services, Federal Agencies, local governments, and commercial service providers in the region, as directed Scan Legacy, NMCI, & SIPRNET Ensure Scans are sent from each Installation to the REM Server @ CPEN Ensure the REM Server forwards Installation scans to MCNOSC Ensure Remediation is conducted Manage Audit Recods Ensure Arcsight feed is monitored Verify Backups Review POA&M Password Cracking Ensure scanning is completed and reported Conduct Self Assessments Manage War Driving Report COOP activities Ensure Emergency Action Plans are in place and up to date Review System Security Program

13 MCIWEST Information Assurance Information Assurance Manager (PD) con’t Develop Mission, Functions, & Responsibilities Define - Refine Command Relationships Identify Issues, Commonalities, & Solutions Develop Regional Policies & Doctrine Allocate resources to installations Set Priorities, Deadlines, & Schedules Interface with other Uniformed Services, Federal Agencies, local governments, and commercial service providers in the region, as directed Scan Legacy, NMCI, & SIPRNET Ensure Scans are sent from each Installation to the REM Server @ CPEN Ensure the REM Server forwards Installation scans to MCNOSC Ensure Remediation is conducted Manage Audit Recods Ensure Arcsight feed is monitored Verify Backups Review POA&M Password Cracking Ensure scanning is completed and reported Conduct Self Assessments Manage War Driving Report COOP activities Ensure Emergency Action Plans are in place and up to date Review System Security Program On the 8 th Day, catch up on emails ( you have fallen behind, AGAIN )!!!

14 MCIWEST Information Assurance OKAY!!! Enough reviewing…..on to the TEST!!!

15 MCIWEST Information Assurance 101 TEST How many installations/bases comprise MCIWEST? What is the MCIWEST Higher Headquarters Command? What are the 3 Pillars of Information Assurance? What is the acronym for Information Assurance?

16 MCIWEST Information Assurance 101 TEST How many installations/bases comprise MCIWEST? 7 (+1) What is the MCIWEST Higher Headquarters Command? MARFOR Bases Pacific (MARFORPAC) What are the 3 Pillars of Information Assurance? Confidentiality, Integrity, Availability What is the acronym for Information Assurance? IA ……..and for the bonus round

17 MCIWEST Information Assurance 101 TEST The Bonus Round What do IAMs do on the 8 th day of the week? What is the most widely used phrase in an IAM’s vocabulary? What does DIACAP stand for?

18 MCIWEST Information Assurance 101 TEST The Bonus Round What do IAMs do on the 8 th day of the week? Catch up on emails!!! What is the most widely used phrase in an IAM’s vocabulary? NO! (backup phrase: NO-WAY!) What does DIACAP stand for? Dept of Defense Certification & Accreditation Process

19 MCIWEST Information Assurance 201 AGENDA Command Support IT Governance Access (process & physical security partnership) Certification & Accreditation

20 MCIWEST Information Assurance 201 COMMAND SUPPORT of IA PROGRAM Structure (T/O, Contractor Support) Funding (Training, Equipment, Salaries) Policy (IT Governance…5 W’s) Procedure (IT Governance…How)

21 MCIWEST Information Assurance 201 IT GOVERNANCE (Policy, Doctrine, & Procedures) Who Writes, Reviews, Approves Resources Required Establish & Document Clear Roles & Responsibilities (R&R) Key Information Security Documents Mission Statements Job Descriptions Reporting Relationships Owner, Custodian, User Roles Outsourcing

22 MCIWEST Information Assurance 201 ACCESS (process & physical security partnership) Process for ACCESS System Authorization Access Request (SAAR…new!) Request, Need to Know, Clearance Validated, Verified IA last line of defense: “Assurance” IA Training (IA, PII, PKI, Removable Media, Phishing) Physical Security Partnership

23 MCIWEST Information Assurance 201 Certification & Accreditation (DIACAP) PHASE I: Train (Both IA Community and Customers/Users) PHASE II: Identify (Systems & Applications) PHASE III: Verify (already ATO/ATC?) PHASE III: Document PHASE IV: Maintain & Decommission VALIDATORS!!! Uncle Sam Needs You!!!

24 MCIWEST Information Assurance “Keys to Success” Right People, Procedures, Technology Confidentiality Integrity Availability Authentication Non-Repudiation

25 MCIWEST Information Assurance Cyber War: Is the Threat Real?

26 MCIWEST Information Assurance C & A (The FOG of WAR)

27 MCIWEST Information Assurance Questions?

Download ppt "MCIWEST Information Assurance Mr. David Robbins MCIWEST Information Assurance Manager (Bldg 24200) Camp Pendleton, CA 92055 Comm: (760) 725-2725 DSN:"

Similar presentations

The Whole/Hole of Security Public (DoD) v. Corporate Carl Bourland US Army Judge Advocate Generals Corps.

The Whole/Hole of Security Public (DoD) v. Corporate Carl Bourland US Army Judge Advocate Generals Corps.
HIPAA Security Presentation to The American Hospital Association Dianne Faup Office of HIPAA Standards November 5, 2003.

HIPAA Security Presentation to The American Hospital Association Dianne Faup Office of HIPAA Standards November 5, 2003.
METRICS AND CONTROLS FOR DEFENSE IN DEPTH AN INFORMATION TECHNOLOGY SECURITY ASSESSMENT INITIATIVE.

METRICS AND CONTROLS FOR DEFENSE IN DEPTH AN INFORMATION TECHNOLOGY SECURITY ASSESSMENT INITIATIVE.
Program Managers Forum

Program Managers Forum
Joint Contingency Contracting

Joint Contingency Contracting
MCIWEST – MCB CAMPEN Cyber Security Brief LtCol Voigts Deputy AC/S G-6.

MCIWEST – MCB CAMPEN Cyber Security Brief LtCol Voigts Deputy AC/S G-6.
FIPS 201 Personal Identity Verification For Federal Employees and Contractors National Institute of Standards and Technology Information Technology Laboratory.

FIPS 201 Personal Identity Verification For Federal Employees and Contractors National Institute of Standards and Technology Information Technology Laboratory.
DoD Information Assurance Certification and Accreditation Process (DIACAP) August 2011.

DoD Information Assurance Certification and Accreditation Process (DIACAP) August 2011.
U. S. Fleet Forces Command

U. S. Fleet Forces Command
Prepared for: DISA September 17, 2003 Establishing a Government Information Security System Presented to the IT AND COMMUNICATIONS SYSTEMS SECURITY CONFERENCE.

Prepared for: DISA September 17, 2003 Establishing a Government Information Security System Presented to the IT AND COMMUNICATIONS SYSTEMS SECURITY CONFERENCE.
4/29/2009Michael J. Cohen1 Practical DIACAP Implementation CS526 Research Project by Michael J. Cohen 4/29/2009.

4/29/2009Michael J. Cohen1 Practical DIACAP Implementation CS526 Research Project by Michael J. Cohen 4/29/2009.
DHS, National Cyber Security Division Overview

DHS, National Cyber Security Division Overview
Smart Grid - Cyber Security Small Rural Electric George Gamble Black & Veatch

Smart Grid - Cyber Security Small Rural Electric George Gamble Black & Veatch
U.S. Department of Agriculture eGovernment Program February 2004 eAuthentication Integration Status eGovernment Program.

U.S. Department of Agriculture eGovernment Program February 2004 eAuthentication Integration Status eGovernment Program.
DoD Information Technology Security Certification and Accreditation Process (DITSCAP) Phase III – Validation Thomas Howard Chris Pierce.

DoD Information Technology Security Certification and Accreditation Process (DITSCAP) Phase III – Validation Thomas Howard Chris Pierce.
Information Assurance (IA) - Measures that protect and defend information and information systems by ensuring their availability, integrity, authentication,

Information Assurance (IA) - Measures that protect and defend information and information systems by ensuring their availability, integrity, authentication,
Coping with Electronic Records Setting Standards for Private Sector E-records Retention.

Coping with Electronic Records Setting Standards for Private Sector E-records Retention.
Connecting People With Information DoD Net-Centric Services Strategy Frank Petroski October 31, 2006.

Connecting People With Information DoD Net-Centric Services Strategy Frank Petroski October 31, 2006.
Security Controls – What Works

Security Controls – What Works
6/4/2015National Digital Certification Agency1 Security Engineering and PKI Applications in Modern Enterprises Mohamed HAMDI National.

6/4/2015National Digital Certification Agency1 Security Engineering and PKI Applications in Modern Enterprises Mohamed HAMDI National.

Similar presentations

Ads by Google