| |
Personnel performing Information Assurance (IA) duties addressed by the DoD Directive 8570.1 and the 8570.01-M Manual include the following IA oversight responsibilities:
- Work closely with data owners, information system owners, and users to ensure secure use and operation of information systems (IS) and networks.
- Ensure rigorous application of IA policies, principles, and practices in the delivery of all information technology (IT) services.
- Maintain system audit functions and periodically review audit information for detection of system abuses.
Identify IA requirements as part of the IT acquisition development process.
- Assess and implement identified corrections (e.g., system patches and fixes) associated with technical vulnerabilities as part of the Information Assurance Vulnerability Management (IAVM) program.
- Maintain configuration control of hardware, systems, and application software.
- Identify and properly react to security anomalies or integrity loopholes such as system weaknesses or vulnerabilities.
- Install and administer user identification or authentication mechanisms.
Specified IA position categories have been defined in the 8570.01-M Manual, and are:
- IA Workforce Technical (IAT) - Level I, Level II, Level III
- IA Workforce Management (IAM) - Level I, Level II, Level III
- IA Workforce System Architect and Engineer Specialty (IASAE) - Level I, Level II, Level III
- Computer Network Defense Service Provider (CND-SP) Specialty - CND-SP Analyst (CND-A), CND-SP Infrastructure Support (CND-IS), CND-SP Incident Responder (CND-IR), CND-SP Auditor (CND-AU), CND-SP Manager (CND-SPM)
Personnel performing Information Assurance (IA) duties addressed by the DoD Directive 8570.1 and the 8570.01-M Manual include the following IA oversight responsibilities:
- Work closely with data owners, information system owners, and users to ensure secure use and operation of information systems (IS) and networks.
- Ensure rigorous application of IA policies, principles, and practices in the delivery of all information technology (IT) services.
- Maintain system audit functions and periodically review audit information for detection of system abuses.
Identify IA requirements as part of the IT acquisition development process.
- Assess and implement identified corrections (e.g., system patches and fixes) associated with technical vulnerabilities as part of the Information Assurance Vulnerability Management (IAVM) program.
- Maintain configuration control of hardware, systems, and application software.
- Identify and properly react to security anomalies or integrity loopholes such as system weaknesses or vulnerabilities.
- Install and administer user identification or authentication mechanisms.
Specified IA position categories have been defined in the 8570.01-M Manual, and are:
- IA Workforce Technical (IAT) - Level I, Level II, Level III
- IA Workforce Management (IAM) - Level I, Level II, Level III
- IA Workforce System Architect and Engineer Specialty (IASAE) - Level I, Level II, Level III
- Computer Network Defense Service Provider (CND-SP) Specialty - CND-SP Analyst (CND-A), CND-SP Infrastructure Support (CND-IS), CND-SP Incident Responder (CND-IR), CND-SP Auditor (CND-AU), CND-SP Manager (CND-SPM)
|
|