0% found this document useful (0 votes)

9 views22 pages

IAS Module 1

This document is a compilation of lectures on Information Assurance and Security for third-year BSIT students at Northern Samar Colleges. It covers fundamental concepts of information security, including confidentiality, integrity, availability, and various types of threats and malicious software. The module also discusses the importance of physical, personnel, IT, and operational security in protecting information assets.

Uploaded by

eviecamposano

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as DOCX, PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

9 views22 pages

IAS Module 1

Uploaded by

eviecamposano

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as DOCX, PDF, TXT or read online on Scribd

You are on page 1/ 22

Republic of the Philippines

Northern Samar Colleges

Catarman, Northern Samar

COMPILATION LECTURES

INFORMATION ASSURANCE AND

SECURITY (APC – 4)

THIRD YEAR- SECOND SEMESTER

___________________________
BSIT-III

Submitted to:

VENUS T. CAMPOSANO, LPT

IT Instructor
Chapter 1- Introduction to Information Technology
Information Assurance and Security: An Overview

This module presents fundamentals of information security where the students will learn about
the key information security concepts such as confidentiality, integrity, availability and other
opponents of a typical information system including software, hardware, data, people, etc.
Moreover, different types of malicious software (malware) will be presented including viruses,
worms, logic bombs, Trojan horses, and back doors and will discuss various security threats and
attacks including software attacks, forces of nature and equipment malfunction.

Learning Outcomes:

At the end of the lesson, you are expected to:

• Identify the relationship of physical security and cyber security.

• Identify the relationship of personnel security policies and procedures to cyber
security.
• Explain how awareness training strengthens cyber security practices.

Learning Content:

1.1 Security in Practice

1.2 What is a “Secure” Computer System?
1.3 Basic Components of Security (Confidentiality, Integrity, Availability)
1.4 System/security life-cycle
1.5 Security implementation Mechanisms
1.6 Disaster recovery (natural and man-made)

Start your lesson here.

Information security is a “well-informed sense of assurance that the information risks and
controls are in balance.” —Jim Anderson, Inovant (2002)

History of Information Security

The need for computer security, or the need to secure the physical location of hardware from
outside threats, began almost immediately after the first mainframes were developed. Groups
developing code-breaking computations during World War II created the first modern
computers. Badges, keys, and facial recognition of authorized personnel controlled access to
sensitive military locations. In contrast, information security during these early years was
rudimentary and mainly composed of simple document classification schemes.
There were no application classification projects for computers or operating systems at this time,
because the primary threats to security were physical theft of equipment, espionage against the
products of the systems, and sabotage.
What is information?

According to Blyth and Kovacich, p. 17, “Information is data endowed with relevance and
purpose. Converting data into information thus requires knowledge. Knowledge by definition is
specialized.” And the characteristics should information possess to be useful are the following:

accurate,
➢ timely,
➢ complete,
➢ verifiable,
➢ consistent,
➢ available.

According to Raggad (pp. 14ff), the following are all distinct conceptual resources:

➢ Noise: raw facts with an unknown coding system

➢ Data: raw facts with a known coding system
➢ Information: processed data
➢ Knowledge: accepted facts, principles, or rules of thumb that are useful for specific domains.
Knowledge can be the result of inferences and implications produced from simple information
facts.

Information Assurance (IA)

It is the study of how to protect your information assets from destruction, degradation,
manipulation and exploitation.
It also refers to a “Measures that protect and defend information and information systems by
ensuring their availability, integrity, authentication, confidentiality, and non-repudiation. These
measures include providing for restoration of information systems by incorporating
protection, detection, and reaction capabilities.” According to the U.S. Department of Defense,

Information Assurance involves:

✓ Actions taken that protect and defend information and information systems by ensuring their
availability, integrity, authentication, confidentiality and non- repudiation. This includes
providing for restoration of information systems by incorporating protection, detection and
reaction capabilities.

According to the DoD definition, these are some aspects of information needing protection:

Availability: timely, reliable access to data and information services for authorized users;
Integrity: protection against unauthorized modification or destruction of information;
Confidentiality: assurance that information is not disclosed to unauthorized persons;
Authentication: security measures to establish the validity of a transmission, message, or
originator.
Non-repudiation: assurance
that the sender is provided
with proof of a data delivery
and recipient
is provided with proof of the
sender’s identity, so that
neither can later deny
having processed
the data.
Non-repudiation: assurance that the sender is provided with proof of a data delivery and
recipient is provided with proof of the sender’s identity, so that neither can later deny having
processed the data.

Thinking Box:
Which of the aspects of
information needing
protection are the most
important?
How would you decide?
Thinking Box:
Which of the aspects of information needing protection are the most important?
How would you decide?
Thinking Box:

Which of the aspects of information needing protection are the most important?

______________________________________________________________________________
______________________________________________________________________________
______________________________________________________________________________
______________________________________________________________________________
______________________________________________________________________________

Information Assurance and

Security: An Overview
______________________________________________________________________________

How would you decide?

______________________________________________________________________________
This module presents
______________________________________________________________________________
______________________________________________________________________________

fundamentals of
______________________________________________________________________________
______________________________________________________________________________
______________________________________________________________________________

information security where

______________________________________________________________________________
______________________________________________________________________________

the students will learn

about the
______________________________________________________________________________

key information security

concepts such as
confidentiality, integrity,
availability and other
opponents of a
typical information system
including software,
hardware, data, people, etc.
Moreover, different types of
malicious software
(malware) will be presented
including viruses, worms,
logic bombs, Trojan horses,
and
back doors and will discuss
various security threats and
attacks including software
attacks, forces of nature
and equipment
malfunction.
According to Debra Herrmann (Complete Guide to Security and Privacy
Metrics), IA should be
viewed as spanning four security engineering domains or major categories:
✓ -physical security
✓ personnel security
✓ IT security
✓ operational security

Thinking Box:

Into which of these would you put the following domain or categories?

- enforcing hard-to-guess passwords

_______________________________________________________________________________________
_______________________________________________________________________________________
_______________________________________________________________________________________
_______________________________________________________________________________________
__________________________________________________________________________________

- encrypting your hard drive

_______________________________________________________________________________________
_______________________________________________________________________________________
_______________________________________________________________________________________
_______________________________________________________________________________________
__________________________________________________________________________________

- locking sensitive documents in a safe

_______________________________________________________________________________________
Four Security Domains
According to Debra
Herrmann, Complete Guide
to Security and Privacy
Metrics:

Four Security Domains

According to Debra Herrmann, Complete Guide to Security and Privacy
Metrics:
1.“Physical security refers to the protection of hardware, software, and
data against physical
threats to reduce or prevent disruptions to operations and services and loss
of assets.”
2. “Personnel security is a variety of ongoing measures taken to reduce
the likelihood and severity of accidental and intentional alteration,
destruction, misappropriation, misuse, misconfiguration, unauthorized
distribution, and unavailability of an organization’s logical and physical
assets, as the result of action or inaction by insiders and known outsiders,
such as business partners.”
3.“IT security is the inherent technical features and functions that
collectively contribute to an IT infrastructure achieving and sustaining
confidentiality, integrity, availability, accountability, authenticity, and
reliability.”
4.“Operational security involves the implementation of standard operational
security procedures that define the nature and frequency of the
interaction between users, systems, and system resources, the purpose
of which is to
a. achieve and sustain a known secure system state at all times, and
b. prevent accidental or intentional theft, release, destruction,
alteration, misuse, or sabotage of system resources.”
According to Raggad’s taxonomy of information security, a computing
environment is made up of five continuously interacting components:
1. activities,
2. people,
3. data,
4. technology,
5. networks.
According to Blyth and Kovacich, IA can be thought of as protecting
information at three distinct levels:
1. physical: which refers to a data and data processing activities in
physical space;
2. Information infrastructure: which refers to information and data
manipulation abilities in cyberspace;
3. Perceptual: which refers to knowledge and understanding in human
decision space.
A. Information Assurance Levels:

The Physical The lowest level focus of IA is the physical level which
consists of computers, physical networks, telecommunications and
supporting systems such as power, facilities and environmental controls.
Also at this level are the people who manage the systems.
Desired Effects: to affect the technical performance and the capability
of physical systems, to disrupt the capabilities of the defender.
Attacker’s Operations: physical attack and destruction, including:
electromagnetic attack, visual spying, intrusion, scavenging and removal,
wiretapping, interference, and eavesdropping.
Defender’s Operations: physical security, OPSEC, TEMPEST.

B. Information Assurance Levels: Infrastructure The second level focus

of IA is the information structure level. This covers information and data
manipulation ability maintained in cyberspace, including: data
structures, processes and programs, protocols, data content and
databases.

C. Information Assurance Levels: Perceptual The third level focus of IA

is the perceptual level, also called social engineering. This is abstract and
concerned with the management of perceptions of the target,
particularly those persons making security decisions.

Desired Effects: to influence decisions and behaviors.

Attacker’s Operations: psychological operations such as: deception,
blackmail, bribery and corruption, social engineering, trademark and
copyright infringement, defamation, diplomacy, creating distrust.
Defender’s Operations: personnel security including psychological
testing, education, and screening such as biometrics, watermarks, keys,
passwords.

Nature of the Threat

Six Types of Nature of Treat
1.
Insider – This consists of
employees, former
employees and contractors.
2.
Hackers - He is one who
gains unauthorized access
to or breaks into
information systems for
thrills, challenge, power, or
profit.
3.
Criminals- It refers to the
target information that
may be of value to them
such as bank
accounts, credit card
information, intellectual
property, etc.
4.
Corporations it actively
seeks intelligence about
competitors or steal trade
secrets.
5.
Governments and agencies
it seeks the military,
diplomatic, and economic
secrets of foreign
governments, foreign
corporations, and
adversaries. May also
target domestic
adversaries.
6.
Terrorists it usually
politically motivated and
may seek to cause
maximal damage to
information infrastructure
as well as endanger lives
and property.
Nature of the Threats
Six Types of Nature of Treat
1. Insider – This consists of employees, former employees and contractors.
2. Hackers - He is one who gains unauthorized access to or breaks into
information systems for thrills, challenge, power, or profit.
3. Criminals- It refers to the target information that may be of value
to them such as bank accounts, credit card information, intellectual
property, etc.
4. Corporations it actively seeks intelligence about competitors or steal trade
secrets.
5. Governments and agencies it seeks the military, diplomatic, and economic
secrets of foreign governments, foreign corporations, and adversaries. May
also target domestic adversaries.
6. Terrorists it usually politically motivated and may seek to cause
maximal damage to information infrastructure as well as endanger lives
and property.

Thinking Box:

Is there overlap among these categories of nature of the treat? Which do you think is the
biggest threat?

_____________________________________________________________________________
_____________________________________________________________________________
_____________________________________________________________________________
_____________________________________________________________________________
_____________________________________________________________________________

_____________________________________________________________________________
_____________________________________________________________________________
_____________________________________________________________________________
_____________________________________________________________________________

Information Assurance Functional Components

Information Assurance (IA) is both proactive and reactive involving
protection, detection, capability restoration, and response. IA environment
protection pillars: “ensure the availability, integrity, authenticity,
confidentiality, and non-repudiation of information”
Attack detection: “timely attack detection and reporting is key to initiating
the restoration and response processes.”
Capability restoration: “relies on established procedures and
mechanisms for prioritizing restoration of essential functions. Capability
restoration may rely on backup or redundant links, information system
components, or alternative means of information transfer.” “A post-attack
analysis should be conducted to determine the command vulnerabilities
and recommended security improvements.”
Attack response: “involves determining actors and their motives,
establishing cause and complicity, and may involve appropriate action
against perpetrators... contributes ... by removing threats and enhancing
deterrence.

IA Applies to Info Infrastructure

Global Information Infrastructure includes worldwide interconnection of
communication networks, computers, databases, and consumer
electronics that make vast amounts of information available to users.”
IA Relationship to Computer Security
IA includes considerations for non-security threats to information systems,
such as acts of nature and the process of recovery from incidents. IA
also emphasizes management, process, and human involvement, and not
merely technology.

IA deployments may involve multiple disciplines of security:

➢ COMPUSEC (Computer security)
➢ COMSEC (Communications security), SIGSEC (Signals security) and
TRANSEC (transmission security)
➢ EMSEC (Emanations security) denying access to information from
unintended emanations such as radio and electrical signals
➢ OPSEC (Operations security) the processes involved in protecting
information

Assets
An asset is the resource being protected, including:
a. physical assets- these are devices, computers, people;
b. logical assets - these are information, data (in transmission, storage,
or processing), and intellectual property;
c. system assets- it refers to any software, hardware, data,
administrative, physical, communications, or personnel resource within an
information system.
Subjects and Objects
Often a security solution/policy is phrased in terms of the following three
categories:
a. Objects: these are stems being protected by the system (documents,
files, directories, databases, transactions, etc.)
b. Subjects: are entities (users, processes, etc.) that execute activities
and request access to objects.
c. Actions: these are operations, primitive or complex, that can operate
on objects and must be controlled.
For example, in the Unix operating system, processes (subjects) may have
permission to perform read, write or execute (actions) on files (objects). In
addition, processes can create other processes, create and delete files, etc.
Certain processes (running with root permission) can do almost anything.
That is one approach to the security problem.

Thinking Box:

Can an entity be both a subject and an object? Why?

__________________________________________________________________________________
__________________________________________________________________________________
__________________________________________________________________________________
_________________________________________________________________________________

D. C.
__________________________________________________________________________________
__________________________________________________________________________________
__________________________________________________________________________________

E.
_________________________________________________________________________________

F. Information Assurance
Levels: Perceptual
G. The third level focus of
IA is the perceptual level,
also called social
engineering. This is
abstract
H. and concerned with
the management of
perceptions of the
target, particularly those
persons making
I. security decisions.
J. Desired Effects: to
influence decisions and
behaviors.
K.
L. Attacker’s Operations:
psychological operations
such as: deception,
blackmail, bribery and
M. corruption, social
engineering, trademark
and copyright
infringement, defamation,
diplomacy,
N. creating distrust.
O. Defender’s Operations:
personnel security
including psychological
testing, education, and
P.screening such as
biometrics, watermarks,
keys, passwords

Critical Aspects
Information assets (objects) may have critical aspects such as:
a. availability: authorized users are able to access it;
b. accuracy: the information is free of error and has the value expected;
c. authenticity: the information is genuine;
d. confidentiality: the information has not been disclosed to unauthorized
parties;
e. integrity: the information is whole, complete and uncorrupted;
f. utility: the information has value for the intended purpose;
g. possession: the data is under authorized ownership and control.

Threat and Threat Actors

A threat is a category of entities, or a circumstance, that poses a potential
danger to an asset (through unauthorized access, destruction, disclosure,
modification or denial of service). Threats can be categorized by intent:
accidental or purposeful (error, fraud, hostile intelligence);
Threats can be categorized by the kind of entity involved: human (hackers,
someone flipping a switch), processing (malicious code, sniffers), natural
(flood, earthquake);
Threats can be categorized by impact: type of asset, consequences.
Examples of Threats

1. Interruption: an asset becomes unusable, unavailable, or lost.

2. Interception: an unauthorized party gains access to an information asset.
3. Modification: an unauthorized party tampers with an asset.
4. Fabrication: an asset has been counterfeit.
Examples:
Interruption: a denial of service attack on a website Interception:
compromise of confidential data, e.g., but packet sniffing
Modification: hacking to deface a website
Fabrication: spoofing attacks in a network
Vulnerabilities and Exploits
A vulnerability is a weakness or fault in a system that exposes information
to attack. A bug in a computer program is a very common vulnerability in
computer security (e.g. buffer overflow situation). A procedural failing can
subvert technology controls (e.g. a core dump of secure information upon a
failure). A lack of controls can result in vulnerabilities, if controls are
subverted (e.g. Enron financials).

A dangling vulnerability is one for which there is no known threat

(vulnerability is there but not exploitable). A dangling threat is one that does
not pose a danger as there is no vulnerability to exploit (threat is there, but
can’t do damage).

Thinking Box:

Can you give examples of these or situations in which they might occur?

_________________________________________________________________________________

Attacks
An attack is an attempt to gain access, cause damage to or otherwise
compromise information and/or systems that support it.
a. Passive attack: an attack in which the attacker observes interaction with
the system.
b. Active attack: at attack in which the attacker directly interacts with the
system.
c. Unintentional attack: an attack where there is not a deliberate goal of
misuse

Thinking Box:
Mention some ways in
which the attack surface
Exposure, Compromise
can be reduced
Exposure is an instance when the system is vulnerable to attack. A
compromise is a situation in which the attacker has succeeded. An
indicator is a recognized action— specific, generalized or theoretical—
that an adversary (threat actor) might be expected to take in preparation for
an attack.
Consequences
A consequence is the outcome of an attack. In a purposeful threat, the
threat
actor has typically chosen a desired consequence for the attack, and selects
the IA objective to target to achieve this.

Countermeasures
Controls, safeguards and countermeasures are any actions, devices,
procedures, techniques and other measures that reduce the vulnerability of
an information system.
There are many kinds:
- technical
- policy, procedures and practices
- education, training and awareness
- cover and deception (camouflage)
- human intelligence (HUMINT), e.g. disinformation
- monitoring of data and transmissions
- surveillance countermeasures that detect or neutralize sensors, e.g.
TEMPEST
- assessments and inspections.

HCIA-Security V4.0 Training Material
100% (1)
HCIA-Security V4.0 Training Material
499 pages
Cyb 208
No ratings yet
Cyb 208
21 pages
Company Profile PT Xynexis International
No ratings yet
Company Profile PT Xynexis International
6 pages
Info Assurance Security 2 Prelim Finals
No ratings yet
Info Assurance Security 2 Prelim Finals
15 pages
Information Security
100% (5)
Information Security
44 pages
Ias Reviewer
No ratings yet
Ias Reviewer
28 pages
Introduction To Information Security (Lesson1) : Mary Joy M. Velasco, MIT, LPT, DIT (CAR)
No ratings yet
Introduction To Information Security (Lesson1) : Mary Joy M. Velasco, MIT, LPT, DIT (CAR)
26 pages
Presentation 1
No ratings yet
Presentation 1
37 pages
The Need For Info Assurance and Security
No ratings yet
The Need For Info Assurance and Security
14 pages
Information Assurance
No ratings yet
Information Assurance
7 pages
Information Security
No ratings yet
Information Security
33 pages
Lesson 2 Introduction To Information
No ratings yet
Lesson 2 Introduction To Information
31 pages
IAS - Week 1
No ratings yet
IAS - Week 1
8 pages
Csit341L - Information Assurance A N D Security
No ratings yet
Csit341L - Information Assurance A N D Security
25 pages
Information Security Management Prelim Module1
No ratings yet
Information Security Management Prelim Module1
18 pages
Itnas Midterm Reviewer
No ratings yet
Itnas Midterm Reviewer
12 pages
Information Security: Sri Krishna Devaraya Engineering College
No ratings yet
Information Security: Sri Krishna Devaraya Engineering College
11 pages
Ais 7 - Reviewer - Midterm
No ratings yet
Ais 7 - Reviewer - Midterm
17 pages
Introduction To Information Security: Lesson Objectives
No ratings yet
Introduction To Information Security: Lesson Objectives
10 pages
Document
No ratings yet
Document
7 pages
Chapter 1
No ratings yet
Chapter 1
7 pages
Information Security1
No ratings yet
Information Security1
39 pages
Information Assurance and Security (Information Assurance - Module 1)
100% (4)
Information Assurance and Security (Information Assurance - Module 1)
16 pages
Lesson One Ias
No ratings yet
Lesson One Ias
6 pages
UNIT 1 - Information Security
No ratings yet
UNIT 1 - Information Security
64 pages
Debremarkos University School of Computing Information Security (Chapter One)
No ratings yet
Debremarkos University School of Computing Information Security (Chapter One)
20 pages
Information Assurance & Security 1
No ratings yet
Information Assurance & Security 1
28 pages
Ias Quiz 1 Lesson 1
No ratings yet
Ias Quiz 1 Lesson 1
3 pages
Chapter 1
No ratings yet
Chapter 1
51 pages
Information Security UNIT-1 Notes
No ratings yet
Information Security UNIT-1 Notes
26 pages
Module 5 INFORMATION SECURITY OVERVIEW
No ratings yet
Module 5 INFORMATION SECURITY OVERVIEW
15 pages
Lecture 1 - Introduction To Security
No ratings yet
Lecture 1 - Introduction To Security
26 pages
Lesson 1 - Introduction To IAS
No ratings yet
Lesson 1 - Introduction To IAS
38 pages
Ias Quiz 1 Reviewer
No ratings yet
Ias Quiz 1 Reviewer
7 pages
Chapter 14
No ratings yet
Chapter 14
55 pages
Information Security
No ratings yet
Information Security
72 pages
Foundation of Information Security: Learning Objectives
No ratings yet
Foundation of Information Security: Learning Objectives
12 pages
IAS - Module No 1-2
No ratings yet
IAS - Module No 1-2
10 pages
Pre5 Lesson1 2
No ratings yet
Pre5 Lesson1 2
6 pages
Information Security Reviewer Midterm
No ratings yet
Information Security Reviewer Midterm
7 pages
Ias Ii
No ratings yet
Ias Ii
34 pages
Presentation 1
No ratings yet
Presentation 1
16 pages
Unit 1 DIS
No ratings yet
Unit 1 DIS
20 pages
Information Security 1
No ratings yet
Information Security 1
10 pages
Information Security
No ratings yet
Information Security
20 pages
Chapter 1
No ratings yet
Chapter 1
64 pages
18cse383t - Unit 1
No ratings yet
18cse383t - Unit 1
171 pages
Ugrd It6205a Information Assurance and Security 1prelim Finals
No ratings yet
Ugrd It6205a Information Assurance and Security 1prelim Finals
17 pages
Introduction To Information Security
No ratings yet
Introduction To Information Security
82 pages
Lecture 1 - Information Security (InfoSec)
No ratings yet
Lecture 1 - Information Security (InfoSec)
76 pages
KCG College of Technology, Chennai-96 Computer Science and Engineering
100% (1)
KCG College of Technology, Chennai-96 Computer Science and Engineering
11 pages
Chapter 1 - Introduction To Information Security
No ratings yet
Chapter 1 - Introduction To Information Security
13 pages
Maina Assignment1
No ratings yet
Maina Assignment1
19 pages
DIS 5 Unit Notes, QB, Univ Ques
No ratings yet
DIS 5 Unit Notes, QB, Univ Ques
129 pages
Computer Application Assignment
No ratings yet
Computer Application Assignment
9 pages
3 Topics Remaining
No ratings yet
3 Topics Remaining
119 pages
Lecture-1A Information Security
No ratings yet
Lecture-1A Information Security
39 pages
Module 1-Intro To IA
No ratings yet
Module 1-Intro To IA
61 pages
Module II Part A
No ratings yet
Module II Part A
16 pages
Lecture 1 - Information Security Basics
No ratings yet
Lecture 1 - Information Security Basics
7 pages
University of Cape Coast: College of Distance Education - Code Temasco Study Centre
No ratings yet
University of Cape Coast: College of Distance Education - Code Temasco Study Centre
8 pages
Cybersecurity
From Everand
Cybersecurity
Harry Katzan Jr.
No ratings yet
Feb Accomplishment Report
No ratings yet
Feb Accomplishment Report
1 page
April 14 2025 PBC (New Copy)
No ratings yet
April 14 2025 PBC (New Copy)
1 page
Cad 15 Frilles 1
No ratings yet
Cad 15 Frilles 1
1 page
RT 121 - Medical Terminology 4
No ratings yet
RT 121 - Medical Terminology 4
10 pages
RT 121 - Medical Terminology 1
100% (1)
RT 121 - Medical Terminology 1
6 pages
Data Mining Method
No ratings yet
Data Mining Method
9 pages
IT Electives 2 Information Assurance and Security Lesson 1
No ratings yet
IT Electives 2 Information Assurance and Security Lesson 1
28 pages
Chapter 5 - Planning For Security
No ratings yet
Chapter 5 - Planning For Security
17 pages
Southern Mindanao Institute of Technology, Inc.: Summary of References Per Subject
No ratings yet
Southern Mindanao Institute of Technology, Inc.: Summary of References Per Subject
13 pages
BL It 6205a Lec 1923T Info. Assurance and Security1
No ratings yet
BL It 6205a Lec 1923T Info. Assurance and Security1
51 pages
CCS Unit 5
No ratings yet
CCS Unit 5
33 pages
Cyber Security Notes UNIT-I
No ratings yet
Cyber Security Notes UNIT-I
41 pages
Information Assurance and Security 1 PRELIM MP1 FINAL LAB EXAM PQ1 PRELIM EXAM - 2
No ratings yet
Information Assurance and Security 1 PRELIM MP1 FINAL LAB EXAM PQ1 PRELIM EXAM - 2
58 pages
CRF 002 Demo
No ratings yet
CRF 002 Demo
12 pages
Career Pathway Cyber Defense Analyst (511) : Developed by
No ratings yet
Career Pathway Cyber Defense Analyst (511) : Developed by
43 pages
Chapter One
No ratings yet
Chapter One
71 pages
NZISM ISM Document v. 3.6 September 2022
No ratings yet
NZISM ISM Document v. 3.6 September 2022
364 pages
CISA Brochure
100% (1)
CISA Brochure
4 pages
Intro RMF
No ratings yet
Intro RMF
19 pages
Lesson 1
No ratings yet
Lesson 1
13 pages
Nesa
No ratings yet
Nesa
5 pages
Smplex 7991
No ratings yet
Smplex 7991
3 pages
CSE3100 - Session1
No ratings yet
CSE3100 - Session1
30 pages
Information Assurance and Security (IAS)
No ratings yet
Information Assurance and Security (IAS)
27 pages
The National Information Assurance Framework
No ratings yet
The National Information Assurance Framework
75 pages
Computer Essentials
No ratings yet
Computer Essentials
28 pages
CH1 Introduction To Information Assurance and Security
No ratings yet
CH1 Introduction To Information Assurance and Security
37 pages
Technical Specifications For Construction and Management of SCIF
100% (1)
Technical Specifications For Construction and Management of SCIF
164 pages
Information Security Management Handbook 5th Edition Harold F. Tipton All Chapter Instant Download
100% (6)
Information Security Management Handbook 5th Edition Harold F. Tipton All Chapter Instant Download
84 pages
Module 1 - IAS
No ratings yet
Module 1 - IAS
28 pages
Cyber Manageement Alliance VDPO Services
No ratings yet
Cyber Manageement Alliance VDPO Services
4 pages
Selecting A PPM Checklist
No ratings yet
Selecting A PPM Checklist
2 pages