ODNI/NCIX SPECIAL SECURITY CENTER Security Education & Training Program Course Descriptions

Transcription

1 ODNI/NCIX SPECIAL SECURITY CENTER Security Educatin & Training Prgram Curse Descriptins PLEASE READ: Cntractrs must have apprving Gvernment Supervisr, POC r COTR dni-ssc-training@dni.gv with cncurrence fr attendance Clearance verified in Scattered Castles/JPAS; d nt send unless requested N csts t yu r spnsring agency fr curse participatin. Yu are respnsible fr yur travel/htel/perdiem Curses may have students frm ur Cmmnwealth Partner Cuntries. Please cntact us if this may impact yur attendance. DNI/SSC ICD 503 IT SYSTEMS SECURITY RISK MANAGEMENT, ASSESSMENT & AUTHORIZATION FOR THE INTELLIGENCE COMMUNITY COURSE PURPOSE: This curse is designed fr Infrmatin System Security and Infrmatin Assurance Prfessinals respnsible fr implementing and assessing security plicies, practices, prcedures and technlgies. The curse will cver implementatin and cnduct f Intelligence Cmmunity (IC) infrmatin systems assessment, authrizatin, risk management and cntinuus mnitring in accrdance with ICD 503. We will prvide students with new methds and appraches t assessing and authrizing IT systems within the Intelligence Cmmunity. The curse will deliver applicable natinal security level guidelines and methdlgies with specific fcus n IC Standards, plans, methds, prcesses, and templates. Yu will becme familiar with IC 503 templates and prcesses thrugh case studies and exercises. LENGTH: 5 days / 8:00 4:30 (8:00 12:30 n Friday) TARGET: Federal gvernment civilians, military persnnel, State, Lcal and Tribal gvernments, Cmmnwealth Partners and gvernment cntractrs wh are directly invlved in the assessment and authrizatin f IC infrmatin systems in accrdance with ICD 503 and assciated IC Standards. The subject matter expertise addressed in the seminar are (ICD 503): System Categrizatin Security Cntrls and Assessment Risk Assessment System Authrizatin Cntinuus Mnitring Prtectin f IT equipment and media MATERIALS: This curse is taught at the UNCLASSIFIED level. Knwledge f ICD 503, Infrmatin Technlgy Systems Security Risk Management, Certificatin, and Accreditatin; Experience and/r knwledge f DCID 6/3, JFAN 6/3 r DIACAP; Understanding f IT netwrks, systems, terminlgy and System Develpment Life Cycle (SDLC) Familiarizatin with NIST Special Publicatin Revisin 1, Guide fr Applying the Risk Management Framewrk t Federal Infrmatin Systems, CNSSI 1253, and NIST SP Revisin 3, SP , SP Revised Page 1 f 5

2 DNI/SSC ICD 704 ADJUDICATIONS COURSE PURPOSE: This curse prepares yu t make adjudicative decisins cnsistent with ICD 704 requirements. We will prvide appraches t enhance best practices and reciprcity acrss the Intelligence Cmmunity and DD rganizatins authrized t grant access and adjudicate fr Sensitive Cmpartmented Infrmatin. We will explain the adjudicatin prcess and what needs t be cnsidered t upgrade an individual t anther clearance and/r access level. Als an excellent seminar fr a security prfessinal wh wants t understand the prcess behind adjudicatin decisins. TARGET: Persnnel perfrming backgrund checks, clearance upgrades and adjudicatins. Als t enhance knwledge fr the well runded career security prfessinal. SECRET clearance Please review ICD 704 prir t attending curse. DNI/SSC ICD 705 PHYSICAL SECURITY COURSE PURPOSE: This curse prepares yu t implement the cnstructin and security prtectin standards required fr all US Gvernment facilities r US Gvernment spnsred cntractr facilities where Sensitive Cmpartmented Infrmatin (SCI) r Special Access Prgram (SAP) material may be stred, used, discussed and/r prcessed. Discussin includes planning and defining requirements, site selectin, design, cnstructin, certificatin and accreditatin, peratins, and dispsal. Yu will discuss current physical security cncerns f their respective rganizatins and brainstrm slutins. TARGET: Federal gvernment civilians, military persnnel and gvernment cntractrs respnsible fr the physical planning and implementatin f SCI and SAP facilities. SECRET clearance Please review the fllwing dcuments prir t curse attendance: IC Directive 705, Sensitive Cmpartmented Infrmatin Facilities (SCIFs) IC Standard 705-1, Physical and Technical Standards fr SCIFs IC Standard 705-2, Standards fr Accreditatin and Reciprcal Use f SCIFs Revised Page 2 f 5

3 DNI/SSC SPECIAL SECURITY OFFICER COURSE (SSOC) PURPOSE: Prepare security prfessinals wh administer SCI prgrams. We will familiarize yu with security DCIDs and SCI plicies and cmpartments. We use practical implementatin exercises t give hands-n experience. The class is divided int teams with an assigned facilitatr fr individual attentin. The tpics include: Structure f Intelligence Cmmunity Security Incidents and Investigatins Business and Security Interfaces Special Access Prgrams Physical Security (ICD 705) Persnnel Security (ICD 704) Infrmatin Systems Security (ICD 503) experience TARGET: Security prfessinals wh administer all aspects f SCI prgrams Attendees must have TS/ SCI and 2-5 years security experience Gvernment persnnel ONLY DNI/SSC MID-LEVEL SECURITY PROFESSIONAL SEMINAR (MSPS) PURPOSE: Expse mid-level security fficers t security issues and perspectives that prepare them fr psitins f greater respnsibility in the security prfessin. The MSPS is the middle step in a three level cmprehensive training develpment hierarchy fr IC Security Prfessinals. The MSPS cntains practical implementatin exercises t give hands-n experience. The class is divided int teams with an assigned instructr/facilitatr fr individual attentin. The tpics include: Security Challenges Ahead Security frm Multiple Perspectives IC Security Plicy: Changes and Current Trends Analytical Risk Management (Mid-Level) Supervisry Grwth and Management Challenges Leading an Effective Security Organizatin Infrmatin Systems Security in Transitin Physical and Technical Security in Transitin Persnnel Security Tday Achieving Excellence in Security Management Being a Security Leader f Integrity Cmmunicating Security fr Success Decisin Making fr the Security Manager Making the Mst f Yur Security Career TARGET: Security Managers wh administer all aspects f SCI prgrams Attendees must have TS/ SCI and 5-10 years security experience/gs11-gs13 Gvernment persnnel ONLY Revised Page 3 f 5

4 DNI/SSC SENIOR SECURITY PROFESSIONAL SEMINAR (SSPS) PURPOSE: Expse the next generatin f security managers and leaders t cmmunity best practices and prvide a resurce fr develping effective prgram managers and leaders. Best practices and management philsphies will be wven thrughut the seminar. We will engage participants in highly interactive discussins with tp-ntch security practitiners as presenters and facilitatrs. Exercises are utilized thrughut the week t emphasize learning pints and facilitate discussins. Each day will have a primary fcus discussing principles in managing cmplex and integrated security prgrams. The tpics include: Cnflict Reslutin Mtivatin by Cmmunicatin Decisin Making Advanced ARM Vilence in the Wrkplace Security Management in a New Decade Fundatins f a CI Prfessin Security Ht Tpics Sptlight Panel (security leaders frm different IC agencies) Keynte guest speakers frm different IC agencies LENGTH: 5 days: begins n Sunday at 4pm and cncludes Friday nn (must stay n-site) TARGET: Security prfessinals and managers COST: Yu are respnsible fr per diem fr accmmdatins and meals MATERIALS: UNCLASSIFIED --Gvernment Persnnel Only GS r equivalent with minimum 10 years security experience Requires an ed letter f recmmendatin frm rganizatinal supervisr t dni-ssc-training@dni.gv Revised Page 4 f 5

5 DNI/SSC SENSITIVE COMPARTMENTED INFORMATION (SCI) OVERVIEW SEMINAR The curses belw are currently being cnverted int Web-based training. Cnsideratin will be made t hld a curse live n-site by request, with a minimum f 75 participants. Cntact dni-ssc-training@dni.gv fr mre infrmatin. PURPOSE: Mdule 1- Welcme t Intelligence Cmmunity (IC) Security: A thrugh SCI security expsure fr recently SCI-apprved persnnel, r fr thse that d nt handle SCI as part f their daily wrk lives. The sessin allws yu t walk away with a slid security fundatin and an understanding f yur respnsibilities. It prvides basic knwledge needed t prtect classified activities, prcedures, systems, and facilities. Mdule 2 Intelligence Cmmunity Security Tday: Highlight key security pints frm Mdule 1, and prvide a greater fcus n changes within security in a pst 9/11 wrld. This sessin is useful as a refresher fr security practitiners, and as an update f current security changes. Mdule 3 - Classificatin Management: Prvide a general understanding f classificatin management and hw t prperly mark dcuments. This sessin explains the basic elements f classificatin management, what we are prtecting and hw t d it. Yu will be briefed n safeguarding prcedures, the basic elements f E.O , derivative classificatin authrities and we cnclude with a classificatin exercise. Mdule 4 Unauthrized Disclsures: Explains prblems surrunding unauthrized disclsures and prvides security fficers the tls t effectively respnd t issue f unauthrized disclsures. Yu will be briefed n the laws and will gain insight int damage dne by unauthrized disclsures. We will als explain respnsibilities and requirements under ICD 701. Mdule 5 Living Within a Sensitive Cmpartmented Infrmatin Facility (SCIF): Expse attendees t principles and practices fr the prtectin and management f infrmatin within the cnfines f a SCIF. A basic verview f access cntrl, escrting visitrs, hw the SCIF is cnstructed, hw t stre infrmatin, and general plicies that gvern SCIFs and thse that wrk in them. There will be an verview regarding SCI materials as well as classificatin management and hw t ensure infrmatin stred within the SCIF is managed crrectly. The curse will include interactive discussins and exercises t emphasize learning pints and facilitate discussins. LENGTH: Mdules 1,2,3,4 = 3 hurs each. Mdule 5 = 7 hurs. Mdules are stand-alne. If selecting Mdules 1-4, please select at least 2 mdules. TARGET: Federal gvernment civilians, military persnnel and gvernment cntractrs with respnsibility fr briefing newly SCI-cleared persnnel. Als may be used fr newly SCI-accessed persnnel r fr an annual refresher briefing. Attendees must have TS fr #1,2,5. Revised Page 5 f 5