MCIWEST Information Assurance

MCIWESTInformation Assurance

Mr. David Robbins

MCIWEST Information Assurance Manager (Bldg 24200)

Camp Pendleton, CA 92055

Comm: (760) 725-2725

DSN: 365-2725

BlkBry: (760) 213-0400

[email protected]

MCIWEST Information Assurance

201(AFCEA…me again?)

MCIWEST Information Assurance

201(AFCEA…me again?)

MCIWEST Information Assurance

201(AFCEA…me again?)

• …regardless of the reason, here I am!!!

MCIWEST Information Assurance

201(…but before we proceed)

• Summary of MCIWEST IA 101 (April 2010)

• Pass IA 101 Certification Exam in order to Proceed to the MCIWEST IA 201 Course!!!

MCIWESTInformation Assurance

MCIWEST Commands +1

MCIWESTInformation Assurance

Command & Organizational Relationships

MCIWESTInformation Assurance 101

IA Mission & Overview

• The Marine Corps Information Assurance (IA) division supports expeditionary maneuver warfare extending from the Operating Forces to the Supporting Establishment. Marine Corps IA ensures end-to-end capability to deliver secure information at the right time, to the right place, and in a useable format, allowing commanders to exercise command and communication, regardless of proximity to their assigned forces.

• The Marine Corps' specific objective for achieving IA is to employ state-of-the-art technology, provide awareness training to all users, and to deploy computer network defense tools across the enterprise. This is achieved by deploying a defense in depth strategy integrating the capabilities of people, sound procedures, and technology to achieve strong, effective, multi-layer and multi-dimensional protection. The goals of the Marine Corps IA division include confidentiality, integrity, availability, authentication, and non-repudiation.

MCIWESTInformation Assurance 101

IA Goals & Pillars

• Confidentiality• Integrity• Availability• Authentication• Non-Repudiation

• Protect Information• Defend Systems & Networks (CND)• Provide SA & IA Command & Cntrl• Transform & Enable IA Capabilities• Create an IA Empowered

Workforce

MCIWESTInformation Assurance

Information Assurance Manager (PD)

• Develop Mission, Functions, & Responsibilities

• Define - Refine Command Relationships

• Identify Issues, Commonalities, & Solutions

• Develop Regional Policies & Doctrine

• Allocate resources to installations

• Set Priorities, Deadlines, & Schedules

• Interface with other Uniformed Services, Federal Agencies, local governments, and commercial service providers in the region, as directed

• Scan Legacy, NMCI, & SIPRNET

• Ensure Scans are sent from each Installation to the REM Server @ CPEN

• Ensure the REM Server forwards Installation scans to MCNOSC

• Ensure Remediation is conducted

• Manage Audit Recods

• Ensure Arcsight feed is monitored

• Verify Backups

• Review POA&M

• Password Cracking

• Ensure scanning is completed and reported

• Conduct Self Assessments

• Manage War Driving

• Report COOP activities

• Ensure Emergency Action Plans are in place and up to date

• Review System Security Program

MCIWESTInformation Assurance

Information Assurance Manager (PD) con’t

• Develop Mission, Functions, & Responsibilities

• Define - Refine Command Relationships

• Identify Issues, Commonalities, & Solutions

• Develop Regional Policies & Doctrine

• Allocate resources to installations

• Set Priorities, Deadlines, & Schedules

• Interface with other Uniformed Services, Federal

• Agencies, local governments, and commercial service providers in the region, as directed

• Scan Legacy, NMCI, & SIPRNET

• Ensure Scans are sent from each Installation to the REM Server @ CPEN

• Ensure the REM Server forwards Installation scans to MCNOSC

• Ensure Remediation is conducted

• Manage Audit Recods

• Ensure Arcsight feed is monitored

• Verify Backups

• Review POA&M

• Password Cracking

• Ensure scanning is completed and reported

• Conduct Self Assessments

• Manage War Driving

• Report COOP activities

• Ensure Emergency Action Plans are in place and up to date

• Review System Security Program

MCIWESTInformation Assurance

Information Assurance Manager (PD) con’t

• Develop Mission, Functions, & Responsibilities

• Define - Refine Command Relationships

• Identify Issues, Commonalities, & Solutions

• Develop Regional Policies & Doctrine

• Allocate resources to installations

• Set Priorities, Deadlines, & Schedules

• Interface with other Uniformed Services, Federal Agencies,

• local governments, and commercial service providers in the region, as directed

• Scan Legacy, NMCI, & SIPRNET

• Ensure Scans are sent from each Installation to the REM Server @ CPEN

• Ensure the REM Server forwards Installation scans to MCNOSC

• Ensure Remediation is conducted

• Manage Audit Recods

• Ensure Arcsight feed is monitored

• Verify Backups

• Review POA&M

• Password Cracking

• Ensure scanning is completed and reported

• Conduct Self Assessments

• Manage War Driving

• Report COOP activities

• Ensure Emergency Action Plans are in place and up to date

• Review System Security Program

• On the 8th Day, catch up on emails (you have fallen behind, AGAIN)!!!

MCIWEST Information Assurance

OKAY!!!

Enough reviewing…..on to the TEST!!!

MCIWEST Information Assurance

101 TEST

• How many installations/bases comprise MCIWEST?

• What is the MCIWEST Higher Headquarters Command?

• What are the 3 Pillars of Information Assurance?

• What is the acronym for Information Assurance?

MCIWEST Information Assurance

101 TEST

• How many installations/bases comprise MCIWEST?• 7 (+1)

• What is the MCIWEST Higher Headquarters Command?• MARFOR Bases Pacific (MARFORPAC)

• What are the 3 Pillars of Information Assurance?• Confidentiality, Integrity, Availability

• What is the acronym for Information Assurance?• IA

• ……..and for the bonus round

MCIWEST Information Assurance

101 TESTThe Bonus Round

• What do IAMs do on the 8th day of the week?

• What is the most widely used phrase in an IAM’s vocabulary?

• What does DIACAP stand for?

MCIWEST Information Assurance

101 TESTThe Bonus Round

• What do IAMs do on the 8th day of the week?• Catch up on emails!!!

• What is the most widely used phrase in an IAM’s vocabulary?

NO! (backup phrase: NO-WAY!)• What does DIACAP stand for?

• Dept of Defense Certification & Accreditation Process

MCIWEST Information Assurance

201AGENDA

• Command Support

• IT Governance

• Access (process & physical security partnership)

• Certification & Accreditation

MCIWEST Information Assurance

201COMMAND SUPPORT of IA PROGRAM

• Structure (T/O, Contractor Support)

• Funding (Training, Equipment, Salaries)

• Policy (IT Governance…5 W’s)

• Procedure (IT Governance…How)

MCIWEST Information Assurance

201IT GOVERNANCE (Policy, Doctrine, & Procedures)• Who Writes, Reviews, Approves

• Resources Required

• Establish & Document Clear Roles & Responsibilities (R&R)

• Key Information Security Documents• Mission Statements• Job Descriptions• Reporting Relationships• Owner, Custodian, User Roles• Outsourcing

MCIWEST Information Assurance

201ACCESS (process & physical security partnership)

• Process for ACCESS

• System Authorization Access Request (SAAR…new!)• Request, Need to Know, Clearance Validated, Verified

• IA last line of defense: “Assurance”

• IA Training (IA, PII, PKI, Removable Media, Phishing)

• Physical Security Partnership

MCIWEST Information Assurance

201Certification & Accreditation (DIACAP)

• PHASE I: Train (Both IA Community and Customers/Users)

• PHASE II: Identify (Systems & Applications)

• PHASE III: Verify (already ATO/ATC?)

• PHASE III: Document

• PHASE IV: Maintain & Decommission

• VALIDATORS!!! Uncle Sam Needs You!!!

MCIWESTInformation Assurance

“Keys to Success” • Right People,

Procedures, Technology

• Confidentiality• Integrity• Availability• Authentication• Non-Repudiation

MCIWESTInformation Assurance

Cyber War: Is the Threat Real?

MCIWESTInformation Assurance

C & A (The FOG of WAR)

MCIWESTInformation Assurance

Questions?