1 / 30

The DAIG s Role in Enabling IA Compliance Session 5 August 19, 2009

Purpose Division Mission and Demographics Why IA Readiness Matters Holistic Remediation Approach IA Compliance Framework IA Relational Database (support IA trend analysis) IA Inspection Readiness Summary Methodology to keep IA Compliance Tools Relevant IA Compliance Checklist (version 3.0) Changes Inspection Distribution Model Keys to Success.

afya
Download Presentation

The DAIG s Role in Enabling IA Compliance Session 5 August 19, 2009

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

    1. The DAIGs Role in Enabling IA Compliance Session 5 August 19, 2009/1645-1800

    4. 1. Conduct IA Compliance Inspections

    23. Current focus areas (Checklist 2.0) IA Training and Certification IA Vulnerability Management Certification & Accreditation Portable Electronic Devices Classified Systems Management

    24. # of inspection tasks (questions) increase from 117 to 121 Add 7 inspection tasks Removed or assimilated 3 inspection tasks into other related tasks Net gain 4 inspection tasks Changed FISMA to "IT Contingency Planning" Preponderance of questions (2.0) geared to contingency planning Non contingency planning related questions are moved to more appropriate areas (Incident Handling, C&A and IA Training) FISMA related tasks will include "FISMA" as one of the references

    25. Criticality of items reviewed Relationship to potential risk impact to the LandWarNet Severity level of referenced security controls. Several inspection questions were realigned to more relevant functional areas

    26. Draft Checklist version 3.0 IA Vulnerability Management Certification & Accreditation Portable Electronic Device Minimum IA Technical Classified Systems Management

    28. Shift to strategic and operational IA environment Assess knowledge of oversight duties and responsibilities for IA readiness Conduct Special Interest Inspections (SII): Challenges of implementing IA in the Tactical Environment IA Funding HQDA inspection (ITA) Focusing on Army IA/IT services Compliance inspections will continue to support the use of the Risk Exposure Model

    29. Conduct a candid IA Self Assessment (SA) Start at least 6 months prior to DAIG Inspection Establish process to support remediation efforts Use SA results to support command wide trend analysis IA SAVs Tailor to address command systemic issues Leverage SME support Command IA awareness campaign Communicate to your stakeholders Must have leadership involvement

More Related