SlideShare ist ein Scribd-Unternehmen logo

C&a surveys

Als PPTX, PDF herunterladen
Franklin Orozco
Franklin Orozco

C&A

Daten & Analysen
1 von 11
CERTIFICATION & ACCREDITATION SITE SURVEY VISITS CAP480 – ECPI COLLEGE OF TECHNOLOGY FRANKLIN OROZCO OCTOBER, 16 2014 MRS. JOANNAH BRUSCELL
C&A AND INFORMATIO N ASSURANCE
STANDARDIZATION IN IA REPORTING BACKGROUND INFO The NMCI/NGEN C&A team is responsible for accurate and standardized IAC Security reports that are submitted to the government for the Navy’s IT systems. These reports are used to determine current and potential security controls that can improve the overall security of the Navy’s biggest IT network. • IAC or Information Assurance Control is “an objective IA condition of integrity, availability, and/or confidentiality achieved through the application of specific safeguards or through the regulation of specific activities expressed in a specified format” (Department of the Navy, 2008)
STANDARDIZATION IN IA REPORTING BACKGROUND INFO CONTINUED • IAM or Information Assurance Manager is “the point of contact for all command information assurance matters and implements the command’s IA program.” (Chief of Naval Operations , 2006) • “C&A personnel perform tasks required to analyze, assess, and document IA capabilities and services of DoD ISs to establish compliance with IA requirements, identify vulnerabilities, and quantify risk per reference.” (Chief Information Officer of the Navy , 2009)
INTRODUCTION: THE PROBLEM • Currently, there is no standardized method or process documentation that C&A inspectors adhere to when conducting site survey visits. • This lack of standardization has led to numerous errors, delays and inconsistencies in the reporting packages. • The Government kicks back these packages when errors are present and this causes rework for C&A causing the company time, man hours and ultimately money.
INTRODUCTION: THE SOLUTION • By implementing a standardized method of conducting site survey inspections, the C&A team can minimize the errors, delays and inconsistencies in the package reporting. • This can also improve package submissions, turnover, and overall man hours for C&A inspectors while on site and increase overall productivity.
SOLUTION: THE PURPOSE OF C&A SITE SURVEYS To begin building a standardized process a clear and concise document must be drafted to determine what it is specifically that the C&A site surveys’ goals are. • Interview command security and IA personnel for policies and processes regarding the security of their information systems. • Visually observe facility attributes and take notes on basic facility safety and building codes. (Lighted exit signs, fire suppression, fire extinguishers, etc) • Compile the results from the site visit into a standardized reporting spreadsheet or web based system to submit the data to the government for approval.
OPPOSITIONAL CONCERNS • Senior C&A inspectors may feel their methods are superior and may not want to change their methods. • This is a flawed mindset because there is no obvious correlation between the senior inspectors and junior inspectors’ rework numbers. • A preliminary study has not been conducted to determine the weak inspectors or where a majority of rework is coming from.
OPPOSITIONAL CONCERNS CONTINUED REBUTTALS • Having standardized new hire training documents so as new C&A team members come on board there should be no issues on personal methods developed over time as with senior inspectors.
CONCLUSION • With a standard site survey procedure for the Navy’s C&A department in place and 100% compliance from every team member we can reduce the amount of rework due to errors, delays and inconsistent reporting.
REFERENCES • Chief of Naval Operations (N09N), (2006). Department of The Navy Information Security Program. Retrieved from http://doni.documentservices.dla.mil/SECNAV%20Manuals1/5510.36.pdf. • Chief Information Officer of the Navy, (2009). Department of The Navy Information Assurance (IA) Workforce Management Manual. Retrieved from http://www.doncio.navy.mil/uploads/SECNAV5239_%202IA_WF_MGMT_%20 DON_%20CIO_%20Signature29May09.pdf. • Department of the Navy (2008). DOD Information Assurance Certification & Accreditation Process (DIACAP) Handbook. Retrieved from http://www.doncio.navy.mil/uploads/0721MRT65474.pdf.

Empfohlen

Uas nas uas symposium briefing sd
Uas nas uas symposium briefing sdUas nas uas symposium briefing sd
Uas nas uas symposium briefing sdsUAS News
 
General Presentation On Augustus
General Presentation On AugustusGeneral Presentation On Augustus
General Presentation On AugustusEdwin A Merrick
 
UAV flyer
UAV flyerUAV flyer
UAV flyerStephen Brett
 
fpl resume
fpl resumefpl resume
fpl resumeChris Babcock
 
Deconstructing all types of monitoring visits
Deconstructing all types of monitoring visitsDeconstructing all types of monitoring visits
Deconstructing all types of monitoring visitsDan Sfera
 
EdwardArahillResume2016
EdwardArahillResume2016EdwardArahillResume2016
EdwardArahillResume2016John Arahill
 
Session 22 lars englund
Session 22 lars englundSession 22 lars englund
Session 22 lars englundBjornPeters
 
TN Resume 11-17-2015
TN Resume 11-17-2015TN Resume 11-17-2015
TN Resume 11-17-2015Tribhuwan Choubey
 

Empfohlen

Uas nas uas symposium briefing sd
Uas nas uas symposium briefing sdUas nas uas symposium briefing sd
Uas nas uas symposium briefing sdsUAS News
 
General Presentation On Augustus
General Presentation On AugustusGeneral Presentation On Augustus
General Presentation On AugustusEdwin A Merrick
 
UAV flyer
UAV flyerUAV flyer
UAV flyerStephen Brett
 
fpl resume
fpl resumefpl resume
fpl resumeChris Babcock
 
Deconstructing all types of monitoring visits
Deconstructing all types of monitoring visitsDeconstructing all types of monitoring visits
Deconstructing all types of monitoring visitsDan Sfera
 
EdwardArahillResume2016
EdwardArahillResume2016EdwardArahillResume2016
EdwardArahillResume2016John Arahill
 
Session 22 lars englund
Session 22 lars englundSession 22 lars englund
Session 22 lars englundBjornPeters
 
TN Resume 11-17-2015
TN Resume 11-17-2015TN Resume 11-17-2015
TN Resume 11-17-2015Tribhuwan Choubey
 
CV Raul Alafa May 2016
CV Raul Alafa May 2016CV Raul Alafa May 2016
CV Raul Alafa May 2016Raul Alafa
 
DaleHobbsResume
DaleHobbsResumeDaleHobbsResume
DaleHobbsResumeDale Hobbs
 
DaleHobbsResume
DaleHobbsResumeDaleHobbsResume
DaleHobbsResumeDale Hobbs
 
Holtzlander Resume1-23-16
Holtzlander Resume1-23-16Holtzlander Resume1-23-16
Holtzlander Resume1-23-16Gerald Holtzlander
 
Making the most of a consolidated C2 Framework, by Grant McHerron, from MILCI...
Making the most of a consolidated C2 Framework, by Grant McHerron, from MILCI...Making the most of a consolidated C2 Framework, by Grant McHerron, from MILCI...
Making the most of a consolidated C2 Framework, by Grant McHerron, from MILCI...Ocean Software
 
Extracting a Force Readiness picture from your big data
Extracting a Force Readiness picture from your big dataExtracting a Force Readiness picture from your big data
Extracting a Force Readiness picture from your big dataOcean Software
 
Resume 23-05-16
Resume 23-05-16Resume 23-05-16
Resume 23-05-16Sooraj S Nair
 
Gregory Colvin-Resume
Gregory Colvin-ResumeGregory Colvin-Resume
Gregory Colvin-ResumeGregory Colvin
 
Thomas Murphy Resume - Clearance
Thomas Murphy Resume - ClearanceThomas Murphy Resume - Clearance
Thomas Murphy Resume - ClearanceThomas Murphy
 
Samuel_Resume
Samuel_ResumeSamuel_Resume
Samuel_ResumeSamuel Moore
 
MICHAEL BILHEIMER Resume v3
MICHAEL BILHEIMER Resume v3MICHAEL BILHEIMER Resume v3
MICHAEL BILHEIMER Resume v3Mike Bilheimer
 
MICHAEL BILHEIMER Resume
MICHAEL BILHEIMER ResumeMICHAEL BILHEIMER Resume
MICHAEL BILHEIMER ResumeMike Bilheimer
 
DoD_resume
DoD_resumeDoD_resume
DoD_resumeJin Dang
 
Barnes Michael Professional Resume2016
Barnes Michael Professional Resume2016Barnes Michael Professional Resume2016
Barnes Michael Professional Resume2016Mike Barnes
 
Reliability Program Approval Presentation_
Reliability Program Approval Presentation_Reliability Program Approval Presentation_
Reliability Program Approval Presentation_Chad Broussard
 
Burant, Larry resume 01_2014
Burant, Larry resume 01_2014Burant, Larry resume 01_2014
Burant, Larry resume 01_2014Lawrence F. Burant
 
Cheryl McGraw Resume
Cheryl McGraw ResumeCheryl McGraw Resume
Cheryl McGraw Resumeclmcgraw
 
Osric L Prowell - Resume - August 2016
Osric L Prowell - Resume - August 2016Osric L Prowell - Resume - August 2016
Osric L Prowell - Resume - August 2016Osric Prowell
 
Clemmie Crocker Resume 2-10-2017
Clemmie Crocker Resume 2-10-2017Clemmie Crocker Resume 2-10-2017
Clemmie Crocker Resume 2-10-2017Clemmie Crocker
 
RBI for Power Generation
RBI for Power GenerationRBI for Power Generation
RBI for Power GenerationNikhil Kumar
 
Predictive Analysis for Loan Default Presentation : Data Analysis Project PPT
Predictive Analysis for Loan Default Presentation : Data Analysis Project PPTPredictive Analysis for Loan Default Presentation : Data Analysis Project PPT
Predictive Analysis for Loan Default Presentation : Data Analysis Project PPTBoston Institute of Analytics
 
6 Tips for Interpretable Topic Models _ by Nicha Ruchirawat _ Towards Data Sc...
6 Tips for Interpretable Topic Models _ by Nicha Ruchirawat _ Towards Data Sc...6 Tips for Interpretable Topic Models _ by Nicha Ruchirawat _ Towards Data Sc...
6 Tips for Interpretable Topic Models _ by Nicha Ruchirawat _ Towards Data Sc...Dr Arash Najmaei ( Phd., MBA, BSc)
 

Weitere ähnliche Inhalte

Ähnlich wie C&a surveys

CV Raul Alafa May 2016
CV Raul Alafa May 2016CV Raul Alafa May 2016
CV Raul Alafa May 2016Raul Alafa
 
DaleHobbsResume
DaleHobbsResumeDaleHobbsResume
DaleHobbsResumeDale Hobbs
 
DaleHobbsResume
DaleHobbsResumeDaleHobbsResume
DaleHobbsResumeDale Hobbs
 
Making the most of a consolidated C2 Framework, by Grant McHerron, from MILCI...
Making the most of a consolidated C2 Framework, by Grant McHerron, from MILCI...Making the most of a consolidated C2 Framework, by Grant McHerron, from MILCI...
Making the most of a consolidated C2 Framework, by Grant McHerron, from MILCI...Ocean Software
 
Extracting a Force Readiness picture from your big data
Extracting a Force Readiness picture from your big dataExtracting a Force Readiness picture from your big data
Extracting a Force Readiness picture from your big dataOcean Software
 
Thomas Murphy Resume - Clearance
Thomas Murphy Resume - ClearanceThomas Murphy Resume - Clearance
Thomas Murphy Resume - ClearanceThomas Murphy
 
MICHAEL BILHEIMER Resume v3
MICHAEL BILHEIMER Resume v3MICHAEL BILHEIMER Resume v3
MICHAEL BILHEIMER Resume v3Mike Bilheimer
 
MICHAEL BILHEIMER Resume
MICHAEL BILHEIMER ResumeMICHAEL BILHEIMER Resume
MICHAEL BILHEIMER ResumeMike Bilheimer
 
DoD_resume
DoD_resumeDoD_resume
DoD_resumeJin Dang
 
Barnes Michael Professional Resume2016
Barnes Michael Professional Resume2016Barnes Michael Professional Resume2016
Barnes Michael Professional Resume2016Mike Barnes
 
Reliability Program Approval Presentation_
Reliability Program Approval Presentation_Reliability Program Approval Presentation_
Reliability Program Approval Presentation_Chad Broussard
 
Cheryl McGraw Resume
Cheryl McGraw ResumeCheryl McGraw Resume
Cheryl McGraw Resumeclmcgraw
 
Osric L Prowell - Resume - August 2016
Osric L Prowell - Resume - August 2016Osric L Prowell - Resume - August 2016
Osric L Prowell - Resume - August 2016Osric Prowell
 
Clemmie Crocker Resume 2-10-2017
Clemmie Crocker Resume 2-10-2017Clemmie Crocker Resume 2-10-2017
Clemmie Crocker Resume 2-10-2017Clemmie Crocker
 
RBI for Power Generation
RBI for Power GenerationRBI for Power Generation
RBI for Power GenerationNikhil Kumar
 

Ähnlich wie C&a surveys (20)

CV Raul Alafa May 2016
CV Raul Alafa May 2016CV Raul Alafa May 2016
CV Raul Alafa May 2016
 
DaleHobbsResume
DaleHobbsResumeDaleHobbsResume
DaleHobbsResume
 
DaleHobbsResume
DaleHobbsResumeDaleHobbsResume
DaleHobbsResume
 
Holtzlander Resume1-23-16
Holtzlander Resume1-23-16Holtzlander Resume1-23-16
Holtzlander Resume1-23-16
 
Making the most of a consolidated C2 Framework, by Grant McHerron, from MILCI...
Making the most of a consolidated C2 Framework, by Grant McHerron, from MILCI...Making the most of a consolidated C2 Framework, by Grant McHerron, from MILCI...
Making the most of a consolidated C2 Framework, by Grant McHerron, from MILCI...
 
Extracting a Force Readiness picture from your big data
Extracting a Force Readiness picture from your big dataExtracting a Force Readiness picture from your big data
Extracting a Force Readiness picture from your big data
 
Resume 23-05-16
Resume 23-05-16Resume 23-05-16
Resume 23-05-16
 
Gregory Colvin-Resume
Gregory Colvin-ResumeGregory Colvin-Resume
Gregory Colvin-Resume
 
Thomas Murphy Resume - Clearance
Thomas Murphy Resume - ClearanceThomas Murphy Resume - Clearance
Thomas Murphy Resume - Clearance
 
Samuel_Resume
Samuel_ResumeSamuel_Resume
Samuel_Resume
 
MICHAEL BILHEIMER Resume v3
MICHAEL BILHEIMER Resume v3MICHAEL BILHEIMER Resume v3
MICHAEL BILHEIMER Resume v3
 
MICHAEL BILHEIMER Resume
MICHAEL BILHEIMER ResumeMICHAEL BILHEIMER Resume
MICHAEL BILHEIMER Resume
 
DoD_resume
DoD_resumeDoD_resume
DoD_resume
 
Barnes Michael Professional Resume2016
Barnes Michael Professional Resume2016Barnes Michael Professional Resume2016
Barnes Michael Professional Resume2016
 
Reliability Program Approval Presentation_
Reliability Program Approval Presentation_Reliability Program Approval Presentation_
Reliability Program Approval Presentation_
 
Burant, Larry resume 01_2014
Burant, Larry resume 01_2014Burant, Larry resume 01_2014
Burant, Larry resume 01_2014
 
Cheryl McGraw Resume
Cheryl McGraw ResumeCheryl McGraw Resume
Cheryl McGraw Resume
 
Osric L Prowell - Resume - August 2016
Osric L Prowell - Resume - August 2016Osric L Prowell - Resume - August 2016
Osric L Prowell - Resume - August 2016
 
Clemmie Crocker Resume 2-10-2017
Clemmie Crocker Resume 2-10-2017Clemmie Crocker Resume 2-10-2017
Clemmie Crocker Resume 2-10-2017
 
RBI for Power Generation
RBI for Power GenerationRBI for Power Generation
RBI for Power Generation
 

Kürzlich hochgeladen

Predictive Analysis for Loan Default Presentation : Data Analysis Project PPT
Predictive Analysis for Loan Default Presentation : Data Analysis Project PPTPredictive Analysis for Loan Default Presentation : Data Analysis Project PPT
Predictive Analysis for Loan Default Presentation : Data Analysis Project PPTBoston Institute of Analytics
 
6 Tips for Interpretable Topic Models _ by Nicha Ruchirawat _ Towards Data Sc...
6 Tips for Interpretable Topic Models _ by Nicha Ruchirawat _ Towards Data Sc...6 Tips for Interpretable Topic Models _ by Nicha Ruchirawat _ Towards Data Sc...
6 Tips for Interpretable Topic Models _ by Nicha Ruchirawat _ Towards Data Sc...Dr Arash Najmaei ( Phd., MBA, BSc)
 
Easter Eggs From Star Wars and in cars 1 and 2
Easter Eggs From Star Wars and in cars 1 and 2Easter Eggs From Star Wars and in cars 1 and 2
Easter Eggs From Star Wars and in cars 1 and 217djon017
 
Student profile product demonstration on grades, ability, well-being and mind...
Student profile product demonstration on grades, ability, well-being and mind...Student profile product demonstration on grades, ability, well-being and mind...
Student profile product demonstration on grades, ability, well-being and mind...Seán Kennedy
 
Principles and Practices of Data Visualization
Principles and Practices of Data VisualizationPrinciples and Practices of Data Visualization
Principles and Practices of Data VisualizationKianJazayeri1
 
Unveiling the Role of Social Media Suspect Investigators in Preventing Online...
Unveiling the Role of Social Media Suspect Investigators in Preventing Online...Unveiling the Role of Social Media Suspect Investigators in Preventing Online...
Unveiling the Role of Social Media Suspect Investigators in Preventing Online...Milind Agarwal
 
Data Analysis Project Presentation: Unveiling Your Ideal Customer, Bank Custo...
Data Analysis Project Presentation: Unveiling Your Ideal Customer, Bank Custo...Data Analysis Project Presentation: Unveiling Your Ideal Customer, Bank Custo...
Data Analysis Project Presentation: Unveiling Your Ideal Customer, Bank Custo...Boston Institute of Analytics
 
Decoding the Heart: Student Presentation on Heart Attack Prediction with Data...
Decoding the Heart: Student Presentation on Heart Attack Prediction with Data...Decoding the Heart: Student Presentation on Heart Attack Prediction with Data...
Decoding the Heart: Student Presentation on Heart Attack Prediction with Data...Boston Institute of Analytics
 
NO1 Certified Black Magic Specialist Expert Amil baba in Lahore Islamabad Raw...
NO1 Certified Black Magic Specialist Expert Amil baba in Lahore Islamabad Raw...NO1 Certified Black Magic Specialist Expert Amil baba in Lahore Islamabad Raw...
NO1 Certified Black Magic Specialist Expert Amil baba in Lahore Islamabad Raw...Amil Baba Dawood bangali
 
What To Do For World Nature Conservation Day by Slidesgo.pptx
What To Do For World Nature Conservation Day by Slidesgo.pptxWhat To Do For World Nature Conservation Day by Slidesgo.pptx
What To Do For World Nature Conservation Day by Slidesgo.pptxSimranPal17
 
wepik-insightful-infographics-a-data-visualization-overview-20240401133220kwr...
wepik-insightful-infographics-a-data-visualization-overview-20240401133220kwr...wepik-insightful-infographics-a-data-visualization-overview-20240401133220kwr...
wepik-insightful-infographics-a-data-visualization-overview-20240401133220kwr...KarteekMane1
 
Data Factory in Microsoft Fabric (MsBIP #82)
Data Factory in Microsoft Fabric (MsBIP #82)Data Factory in Microsoft Fabric (MsBIP #82)
Data Factory in Microsoft Fabric (MsBIP #82)Cathrine Wilhelmsen
 
Decoding Patterns: Customer Churn Prediction Data Analysis Project
Decoding Patterns: Customer Churn Prediction Data Analysis ProjectDecoding Patterns: Customer Churn Prediction Data Analysis Project
Decoding Patterns: Customer Churn Prediction Data Analysis ProjectBoston Institute of Analytics
 
Bank Loan Approval Analysis: A Comprehensive Data Analysis Project
Bank Loan Approval Analysis: A Comprehensive Data Analysis ProjectBank Loan Approval Analysis: A Comprehensive Data Analysis Project
Bank Loan Approval Analysis: A Comprehensive Data Analysis ProjectBoston Institute of Analytics
 
convolutional neural network and its applications.pdf
convolutional neural network and its applications.pdfconvolutional neural network and its applications.pdf
convolutional neural network and its applications.pdfSubhamKumar3239
 
Minimizing AI Hallucinations/Confabulations and the Path towards AGI with Exa...
Minimizing AI Hallucinations/Confabulations and the Path towards AGI with Exa...Minimizing AI Hallucinations/Confabulations and the Path towards AGI with Exa...
Minimizing AI Hallucinations/Confabulations and the Path towards AGI with Exa...Thomas Poetter
 
Advanced Machine Learning for Business Professionals
Advanced Machine Learning for Business ProfessionalsAdvanced Machine Learning for Business Professionals
Advanced Machine Learning for Business ProfessionalsVICTOR MAESTRE RAMIREZ
 
INTRODUCTION TO Natural language processing
INTRODUCTION TO Natural language processingINTRODUCTION TO Natural language processing
INTRODUCTION TO Natural language processingsocarem879
 

Kürzlich hochgeladen (20)

Predictive Analysis for Loan Default Presentation : Data Analysis Project PPT
Predictive Analysis for Loan Default Presentation : Data Analysis Project PPTPredictive Analysis for Loan Default Presentation : Data Analysis Project PPT
Predictive Analysis for Loan Default Presentation : Data Analysis Project PPT
 
6 Tips for Interpretable Topic Models _ by Nicha Ruchirawat _ Towards Data Sc...
6 Tips for Interpretable Topic Models _ by Nicha Ruchirawat _ Towards Data Sc...6 Tips for Interpretable Topic Models _ by Nicha Ruchirawat _ Towards Data Sc...
6 Tips for Interpretable Topic Models _ by Nicha Ruchirawat _ Towards Data Sc...
 
Easter Eggs From Star Wars and in cars 1 and 2
Easter Eggs From Star Wars and in cars 1 and 2Easter Eggs From Star Wars and in cars 1 and 2
Easter Eggs From Star Wars and in cars 1 and 2
 
Student profile product demonstration on grades, ability, well-being and mind...
Student profile product demonstration on grades, ability, well-being and mind...Student profile product demonstration on grades, ability, well-being and mind...
Student profile product demonstration on grades, ability, well-being and mind...
 
Data Analysis Project: Stroke Prediction
Data Analysis Project: Stroke PredictionData Analysis Project: Stroke Prediction
Data Analysis Project: Stroke Prediction
 
Principles and Practices of Data Visualization
Principles and Practices of Data VisualizationPrinciples and Practices of Data Visualization
Principles and Practices of Data Visualization
 
Unveiling the Role of Social Media Suspect Investigators in Preventing Online...
Unveiling the Role of Social Media Suspect Investigators in Preventing Online...Unveiling the Role of Social Media Suspect Investigators in Preventing Online...
Unveiling the Role of Social Media Suspect Investigators in Preventing Online...
 
Data Analysis Project Presentation: Unveiling Your Ideal Customer, Bank Custo...
Data Analysis Project Presentation: Unveiling Your Ideal Customer, Bank Custo...Data Analysis Project Presentation: Unveiling Your Ideal Customer, Bank Custo...
Data Analysis Project Presentation: Unveiling Your Ideal Customer, Bank Custo...
 
Decoding the Heart: Student Presentation on Heart Attack Prediction with Data...
Decoding the Heart: Student Presentation on Heart Attack Prediction with Data...Decoding the Heart: Student Presentation on Heart Attack Prediction with Data...
Decoding the Heart: Student Presentation on Heart Attack Prediction with Data...
 
NO1 Certified Black Magic Specialist Expert Amil baba in Lahore Islamabad Raw...
NO1 Certified Black Magic Specialist Expert Amil baba in Lahore Islamabad Raw...NO1 Certified Black Magic Specialist Expert Amil baba in Lahore Islamabad Raw...
NO1 Certified Black Magic Specialist Expert Amil baba in Lahore Islamabad Raw...
 
Insurance Churn Prediction Data Analysis Project
Insurance Churn Prediction Data Analysis ProjectInsurance Churn Prediction Data Analysis Project
Insurance Churn Prediction Data Analysis Project
 
What To Do For World Nature Conservation Day by Slidesgo.pptx
What To Do For World Nature Conservation Day by Slidesgo.pptxWhat To Do For World Nature Conservation Day by Slidesgo.pptx
What To Do For World Nature Conservation Day by Slidesgo.pptx
 
wepik-insightful-infographics-a-data-visualization-overview-20240401133220kwr...
wepik-insightful-infographics-a-data-visualization-overview-20240401133220kwr...wepik-insightful-infographics-a-data-visualization-overview-20240401133220kwr...
wepik-insightful-infographics-a-data-visualization-overview-20240401133220kwr...
 
Data Factory in Microsoft Fabric (MsBIP #82)
Data Factory in Microsoft Fabric (MsBIP #82)Data Factory in Microsoft Fabric (MsBIP #82)
Data Factory in Microsoft Fabric (MsBIP #82)
 
Decoding Patterns: Customer Churn Prediction Data Analysis Project
Decoding Patterns: Customer Churn Prediction Data Analysis ProjectDecoding Patterns: Customer Churn Prediction Data Analysis Project
Decoding Patterns: Customer Churn Prediction Data Analysis Project
 
Bank Loan Approval Analysis: A Comprehensive Data Analysis Project
Bank Loan Approval Analysis: A Comprehensive Data Analysis ProjectBank Loan Approval Analysis: A Comprehensive Data Analysis Project
Bank Loan Approval Analysis: A Comprehensive Data Analysis Project
 
convolutional neural network and its applications.pdf
convolutional neural network and its applications.pdfconvolutional neural network and its applications.pdf
convolutional neural network and its applications.pdf
 
Minimizing AI Hallucinations/Confabulations and the Path towards AGI with Exa...
Minimizing AI Hallucinations/Confabulations and the Path towards AGI with Exa...Minimizing AI Hallucinations/Confabulations and the Path towards AGI with Exa...
Minimizing AI Hallucinations/Confabulations and the Path towards AGI with Exa...
 
Advanced Machine Learning for Business Professionals
Advanced Machine Learning for Business ProfessionalsAdvanced Machine Learning for Business Professionals
Advanced Machine Learning for Business Professionals
 
INTRODUCTION TO Natural language processing
INTRODUCTION TO Natural language processingINTRODUCTION TO Natural language processing
INTRODUCTION TO Natural language processing
 

C&a surveys

  • 1. CERTIFICATION & ACCREDITATION SITE SURVEY VISITS CAP480 – ECPI COLLEGE OF TECHNOLOGY FRANKLIN OROZCO OCTOBER, 16 2014 MRS. JOANNAH BRUSCELL
  • 2. C&A AND INFORMATIO N ASSURANCE
  • 3. STANDARDIZATION IN IA REPORTING BACKGROUND INFO The NMCI/NGEN C&A team is responsible for accurate and standardized IAC Security reports that are submitted to the government for the Navy’s IT systems. These reports are used to determine current and potential security controls that can improve the overall security of the Navy’s biggest IT network. • IAC or Information Assurance Control is “an objective IA condition of integrity, availability, and/or confidentiality achieved through the application of specific safeguards or through the regulation of specific activities expressed in a specified format” (Department of the Navy, 2008)
  • 4. STANDARDIZATION IN IA REPORTING BACKGROUND INFO CONTINUED • IAM or Information Assurance Manager is “the point of contact for all command information assurance matters and implements the command’s IA program.” (Chief of Naval Operations , 2006) • “C&A personnel perform tasks required to analyze, assess, and document IA capabilities and services of DoD ISs to establish compliance with IA requirements, identify vulnerabilities, and quantify risk per reference.” (Chief Information Officer of the Navy , 2009)
  • 5. INTRODUCTION: THE PROBLEM • Currently, there is no standardized method or process documentation that C&A inspectors adhere to when conducting site survey visits. • This lack of standardization has led to numerous errors, delays and inconsistencies in the reporting packages. • The Government kicks back these packages when errors are present and this causes rework for C&A causing the company time, man hours and ultimately money.
  • 6. INTRODUCTION: THE SOLUTION • By implementing a standardized method of conducting site survey inspections, the C&A team can minimize the errors, delays and inconsistencies in the package reporting. • This can also improve package submissions, turnover, and overall man hours for C&A inspectors while on site and increase overall productivity.
  • 7. SOLUTION: THE PURPOSE OF C&A SITE SURVEYS To begin building a standardized process a clear and concise document must be drafted to determine what it is specifically that the C&A site surveys’ goals are. • Interview command security and IA personnel for policies and processes regarding the security of their information systems. • Visually observe facility attributes and take notes on basic facility safety and building codes. (Lighted exit signs, fire suppression, fire extinguishers, etc) • Compile the results from the site visit into a standardized reporting spreadsheet or web based system to submit the data to the government for approval.
  • 8. OPPOSITIONAL CONCERNS • Senior C&A inspectors may feel their methods are superior and may not want to change their methods. • This is a flawed mindset because there is no obvious correlation between the senior inspectors and junior inspectors’ rework numbers. • A preliminary study has not been conducted to determine the weak inspectors or where a majority of rework is coming from.
  • 9. OPPOSITIONAL CONCERNS CONTINUED REBUTTALS • Having standardized new hire training documents so as new C&A team members come on board there should be no issues on personal methods developed over time as with senior inspectors.
  • 10. CONCLUSION • With a standard site survey procedure for the Navy’s C&A department in place and 100% compliance from every team member we can reduce the amount of rework due to errors, delays and inconsistent reporting.
  • 11. REFERENCES • Chief of Naval Operations (N09N), (2006). Department of The Navy Information Security Program. Retrieved from http://doni.documentservices.dla.mil/SECNAV%20Manuals1/5510.36.pdf. • Chief Information Officer of the Navy, (2009). Department of The Navy Information Assurance (IA) Workforce Management Manual. Retrieved from http://www.doncio.navy.mil/uploads/SECNAV5239_%202IA_WF_MGMT_%20 DON_%20CIO_%20Signature29May09.pdf. • Department of the Navy (2008). DOD Information Assurance Certification & Accreditation Process (DIACAP) Handbook. Retrieved from http://www.doncio.navy.mil/uploads/0721MRT65474.pdf.