Jan 11, 2016
MCIWESTInformation Assurance
Mr. David Robbins
MCIWEST Information Assurance Manager (Bldg 24200)
Camp Pendleton, CA 92055
Comm: (760) 725-2725
DSN: 365-2725
BlkBry: (760) 213-0400
MCIWEST Information Assurance
201(AFCEA…me again?)
MCIWEST Information Assurance
201(AFCEA…me again?)
MCIWEST Information Assurance
201(AFCEA…me again?)
• …regardless of the reason, here I am!!!
MCIWEST Information Assurance
201(…but before we proceed)
• Summary of MCIWEST IA 101 (April 2010)
• Pass IA 101 Certification Exam in order to Proceed to the MCIWEST IA 201 Course!!!
MCIWESTInformation Assurance
MCIWEST Commands +1
MCIWESTInformation Assurance
Command & Organizational Relationships
MCIWESTInformation Assurance 101
IA Mission & Overview
• The Marine Corps Information Assurance (IA) division supports expeditionary maneuver warfare extending from the Operating Forces to the Supporting Establishment. Marine Corps IA ensures end-to-end capability to deliver secure information at the right time, to the right place, and in a useable format, allowing commanders to exercise command and communication, regardless of proximity to their assigned forces.
• The Marine Corps' specific objective for achieving IA is to employ state-of-the-art technology, provide awareness training to all users, and to deploy computer network defense tools across the enterprise. This is achieved by deploying a defense in depth strategy integrating the capabilities of people, sound procedures, and technology to achieve strong, effective, multi-layer and multi-dimensional protection. The goals of the Marine Corps IA division include confidentiality, integrity, availability, authentication, and non-repudiation.
MCIWESTInformation Assurance 101
IA Goals & Pillars
• Confidentiality• Integrity• Availability• Authentication• Non-Repudiation
• Protect Information• Defend Systems & Networks (CND)• Provide SA & IA Command & Cntrl• Transform & Enable IA Capabilities• Create an IA Empowered
Workforce
MCIWESTInformation Assurance
Information Assurance Manager (PD)
• Develop Mission, Functions, & Responsibilities
• Define - Refine Command Relationships
• Identify Issues, Commonalities, & Solutions
• Develop Regional Policies & Doctrine
• Allocate resources to installations
• Set Priorities, Deadlines, & Schedules
• Interface with other Uniformed Services, Federal Agencies, local governments, and commercial service providers in the region, as directed
• Scan Legacy, NMCI, & SIPRNET
• Ensure Scans are sent from each Installation to the REM Server @ CPEN
• Ensure the REM Server forwards Installation scans to MCNOSC
• Ensure Remediation is conducted
• Manage Audit Recods
• Ensure Arcsight feed is monitored
• Verify Backups
• Review POA&M
• Password Cracking
• Ensure scanning is completed and reported
• Conduct Self Assessments
• Manage War Driving
• Report COOP activities
• Ensure Emergency Action Plans are in place and up to date
• Review System Security Program
MCIWESTInformation Assurance
Information Assurance Manager (PD) con’t
• Develop Mission, Functions, & Responsibilities
• Define - Refine Command Relationships
• Identify Issues, Commonalities, & Solutions
• Develop Regional Policies & Doctrine
• Allocate resources to installations
• Set Priorities, Deadlines, & Schedules
• Interface with other Uniformed Services, Federal
• Agencies, local governments, and commercial service providers in the region, as directed
• Scan Legacy, NMCI, & SIPRNET
• Ensure Scans are sent from each Installation to the REM Server @ CPEN
• Ensure the REM Server forwards Installation scans to MCNOSC
• Ensure Remediation is conducted
• Manage Audit Recods
• Ensure Arcsight feed is monitored
• Verify Backups
• Review POA&M
• Password Cracking
• Ensure scanning is completed and reported
• Conduct Self Assessments
• Manage War Driving
• Report COOP activities
• Ensure Emergency Action Plans are in place and up to date
• Review System Security Program
MCIWESTInformation Assurance
Information Assurance Manager (PD) con’t
• Develop Mission, Functions, & Responsibilities
• Define - Refine Command Relationships
• Identify Issues, Commonalities, & Solutions
• Develop Regional Policies & Doctrine
• Allocate resources to installations
• Set Priorities, Deadlines, & Schedules
• Interface with other Uniformed Services, Federal Agencies,
• local governments, and commercial service providers in the region, as directed
• Scan Legacy, NMCI, & SIPRNET
• Ensure Scans are sent from each Installation to the REM Server @ CPEN
• Ensure the REM Server forwards Installation scans to MCNOSC
• Ensure Remediation is conducted
• Manage Audit Recods
• Ensure Arcsight feed is monitored
• Verify Backups
• Review POA&M
• Password Cracking
• Ensure scanning is completed and reported
• Conduct Self Assessments
• Manage War Driving
• Report COOP activities
• Ensure Emergency Action Plans are in place and up to date
• Review System Security Program
• On the 8th Day, catch up on emails (you have fallen behind, AGAIN)!!!
MCIWEST Information Assurance
OKAY!!!
Enough reviewing…..on to the TEST!!!
MCIWEST Information Assurance
101 TEST
• How many installations/bases comprise MCIWEST?
• What is the MCIWEST Higher Headquarters Command?
• What are the 3 Pillars of Information Assurance?
• What is the acronym for Information Assurance?
MCIWEST Information Assurance
101 TEST
• How many installations/bases comprise MCIWEST?• 7 (+1)
• What is the MCIWEST Higher Headquarters Command?• MARFOR Bases Pacific (MARFORPAC)
• What are the 3 Pillars of Information Assurance?• Confidentiality, Integrity, Availability
• What is the acronym for Information Assurance?• IA
• ……..and for the bonus round
MCIWEST Information Assurance
101 TESTThe Bonus Round
• What do IAMs do on the 8th day of the week?
• What is the most widely used phrase in an IAM’s vocabulary?
• What does DIACAP stand for?
MCIWEST Information Assurance
101 TESTThe Bonus Round
• What do IAMs do on the 8th day of the week?• Catch up on emails!!!
• What is the most widely used phrase in an IAM’s vocabulary?
NO! (backup phrase: NO-WAY!)• What does DIACAP stand for?
• Dept of Defense Certification & Accreditation Process
MCIWEST Information Assurance
201AGENDA
• Command Support
• IT Governance
• Access (process & physical security partnership)
• Certification & Accreditation
MCIWEST Information Assurance
201COMMAND SUPPORT of IA PROGRAM
• Structure (T/O, Contractor Support)
• Funding (Training, Equipment, Salaries)
• Policy (IT Governance…5 W’s)
• Procedure (IT Governance…How)
MCIWEST Information Assurance
201IT GOVERNANCE (Policy, Doctrine, & Procedures)• Who Writes, Reviews, Approves
• Resources Required
• Establish & Document Clear Roles & Responsibilities (R&R)
• Key Information Security Documents• Mission Statements• Job Descriptions• Reporting Relationships• Owner, Custodian, User Roles• Outsourcing
MCIWEST Information Assurance
201ACCESS (process & physical security partnership)
• Process for ACCESS
• System Authorization Access Request (SAAR…new!)• Request, Need to Know, Clearance Validated, Verified
• IA last line of defense: “Assurance”
• IA Training (IA, PII, PKI, Removable Media, Phishing)
• Physical Security Partnership
MCIWEST Information Assurance
201Certification & Accreditation (DIACAP)
• PHASE I: Train (Both IA Community and Customers/Users)
• PHASE II: Identify (Systems & Applications)
• PHASE III: Verify (already ATO/ATC?)
• PHASE III: Document
• PHASE IV: Maintain & Decommission
• VALIDATORS!!! Uncle Sam Needs You!!!
MCIWESTInformation Assurance
“Keys to Success” • Right People,
Procedures, Technology
• Confidentiality• Integrity• Availability• Authentication• Non-Repudiation
MCIWESTInformation Assurance
Cyber War: Is the Threat Real?
MCIWESTInformation Assurance
C & A (The FOG of WAR)
MCIWESTInformation Assurance
Questions?