|
||
 |
||
|
QUICK LINKS ISSPM Training Course Student Evaluations And Comments.pdf PRESS
RELEASES TSP aims to be the leading provider of Information Systems Security Program Management (ISSPM) Training and Certification, for Security Professionals working for the Federal Government, Department of Defense and Intelligence Community Agencies. OUR MISSION: PROTECTING NATIONAL SECURITY INFORMATION The events of September 11th strengthened our companies resolve and mission to protect the Classified and Sensitive information Systems and Networks that play an important role in the United States (U.S.) Critical Information Infrastructure; the Federal Government, the Department of Defense and the Intelligence Community. (Referred Throughout As: USG Agencies)
There is an urgent need for government, government contractors and the military services to field well-trained and competent Information Systems Security Professionals ISSP's). Adequate training is not an option, is mandated in various U.S. Government regulations, and is essential for ensuring a competent workforce of ISSP's across all USG agencies. Fighting the War on Terrorism, Cyber Crimes, Espionage and Insider Threats will be a multifaceted undertaking. TSP has the knowledge, skills and abilities to provide it's clients with one of the most structured and comprehensive ISSPM Training Courses and Certification Programs for Information Systems Security Professionals.
U.S. GOVERNMENT POLICY ON PROTECTING CLASSIFIED INFORMATION
Classified
Information is defined as any information, that if disclosed to
unauthorized people, could jeopardize U.S. Government interests,
institutions, foreign relations, or national security.
As the U.S.
Government becomes more and more technology-oriented, the
Information Assurance (IA) and Information Security (IS)
missions become increasingly challenging. These missions involve
protecting all Classified and Sensitive Information Systems and
Networks that are used to create, store, process or distribute
Classified or Sensitive information. U.S. Government policy
requires all Classified and Sensitive Information to be
appropriately safeguarded to ensure the confidentiality,
integrity, and availability of the information. Safeguards
will be applied such that information is accessed only by
authorized persons and is used only for its authorized purpose,
retains its content integrity and is available to satisfy
mission requirements.
Adequate security of these
Classified and Sensitive Information Systems and Networks is a
mandatory requirement, not an option. USG Agency Directors,
Chief Information Officers, Information Security Professionals
and Network Security Engineers / Administrators all have a
fundamental management responsibility to protect these
Classified and Sensitive Information Systems and Networks.
All USG Agencies are required to comply with core security requirements; Federal Information Security Management Act (FISMA) and Office of Management and Budget (OMB) requirements for IT systems security. Additional security requirements from the Director Of National Intelligence (DNI) and the Committee on National Security Systems (CNSS) may apply to DoD and IC Agencies. (Specific Agency Regulations May Also Apply).
FISMA is a comprehensive framework
for securing the U. S. Governments information technology (IT).
FISMA provides a set of specific security requirements for USG
agencies on how to plan for, budget, implement, and maintain
secure systems.
All USG agencies must develop,
implement and manage a FISMA complaint Information Systems
Security Program, to provide security for the data and IT
systems that support its operations and assets, including both
its own systems as well as those belonging to other agencies,
contractors, and others supporting its mission.
Not only do all USG agencies receive an annual grade for their FISMA compliance, but these grades are made public on at least one U.S. Federal Government web site. A high grade on the FISMA report card indicates that an agencies systems are secure, their data is locked down, and it gives the American people public verification of that fact. 
Click Here For: GAO 2009 Report-Continued Efforts Are Needed To Protect Information Systems from Evolving Threats.pdf
Failure to pass a FISMA
inspection can result in unfavorable publicity for an
agency, increased oversight of the agency, possible computer
breaches, and even a reduction in an agencies IT budget. If
an agency fails to comply with FISMA, or gets a low grade,
it's instantly public knowledge. Unfortunately, in recent
years the media covering government IT affairs has developed
a fondness for reporting on agencies FISMA grades.
A low score
can severely impact an agencies reputation and threaten the jobs
of those who are responsible for regulatory compliance. Chief
Information Officers (CIOs) may have to testify before U.S.
Congress to explain their inadequate performance. Worst of all,
the Office of Management and Budget (OMB) may delay or cancel
funding for agency programs.
For an agency to comply with
FISMA, it must have a well structured and defined
Information Systems Security Program, as outlined in the above
referenced GAO 2009 Report. Key Security Professionals in an
agency that are responsible for ensuring FISMA compliance are
the; Designated Approving Authority (DAA), Chief Information
Officer (CIO), Senior Agency Information Security Officer
(SAISO) and Information Systems Security Managers and Officers
(ISSM's / ISSO's). These Security Professionals must thoroughly
understand core security requirements; U.S.
Federal Laws, FISMA compliance requirements and Office Of
Management and Budget compliance requirements, as well as their
specific agency regulations and requirements.
If these Security Professionals
have not attended an Information Systems Security Program
Management Training Course that teaches FISMA compliance and the
core security requirements, these Security Professionals
may have a difficult time achieving FISMA compliance for their
agency, and continued efforts will become both difficult and
costly.
INFORMATION SYSTEM SECURITY / INFORMATION ASSURANCE TRAINING COURSE
ISSPM TRAINING COURSE AND ISSPMP CERTIFICATION
Click Here For: ISSPM Training Course / ISSPMP Certification
CURRENT / PAST CLIENTS:
DEFENSE CONTRACTORS / RECRUITERS
ADVERTISING --
NEW SECTION!!!! To list a job/position or your company contact information on our website, please submit postings to cybercop@topsecretprotection.com
INFOSEC PROFESSIONAL RESUMES Looking For An InfoSec Professional? (ISSM, ISSO, IAM, IAO)
|
||
 |
||
|
||
 |
