Network Security Evaluation Using the NSA IEM
By Russ Rogers, Ed Fuller, Greg Miles, Matthew Hoagberg, Travis Schack, Chuck Little, Ted Dykstra, Bryan Cunningham
HIGHLIGHT
If a network is secure enough for the NSA, it is probably secure enough for you! Here is the only book on the market that teaches security professionals how to test the security of their own networks using assessment techniques developed by the NSA. |
Follow the NSA's Guidelines for Network Security Evaluation
Date: Jul 2005
Pages: 450 (est.)
User level: All |
DESCRIPTION
Network Security Evaluation provides a methodology for conducting technical security evaluations of all the critical components of a target network. The book describes how the methodology evolved and how to define the proper scope of an evaluation, including the consideration of legal issues that may arise during the evaluation. More detailed information is given in later chapters about the core technical processes that need to occur to ensure a comprehensive understanding of the network’s security posture. Ten baseline areas for evaluation are covered in detail. The tools and examples detailed within this book include both Freeware and Commercial tools that provide a detailed analysis of security vulnerabilities on the target network. The book ends with guidance on the creation of customer roadmaps to better security and recommendations on the format and delivery of the final report.
KEY
SELLING POINTS
MARKET
INFORMATION
Due to the increase in industry specific regulations and legislation, more and more commercial firms are required to address their information security posture in the same way as federal agencies. The targeted audience includes professional service consultants as well as security professionals responsible for information security within their own organizations. Executives can read this book to understand how the processes work and how it will impact their company. Security professionals will learn a comprehensive, end-to-end solution for performing security evaluations that have meaning for the customer and comply with Federal and Industry regulations.
Other books within this particular genre never address all areas of the security evaluation process. This book provides detailed, easy-to-follow instructions for completing a comprehensive evaluation. As opposed to other books that might be construed as similar to this title, we’re not just providing various technical activities, but also relating the analysis of findings back to what the customer has defined as critical to their organization. By combining our understanding of information criticality (defined by the customer), the comprehensive understanding of the technical security posture of the organization, and the industry view on vulnerability ratings, we’re better able to provide a custom deliverable to each customer. Security Evaluation even goes one step further by defining two specific types of metrics used to rate and track technical and organizational security over a period of time. This book is a “all-in-one” solution that will guide the reader through a cradle to grave solution for tracking information security posture.
ABOUT
THE AUTHOR
Russ Rogers is a Co-Founder, Chief Executive Officer, and Principle Security Consultant for Security Horizon, Inc; a Colorado-based professional security services and training provider and veteran owned small business. Russ is a United States Air Force Veteran and has served in military and contract support for the National Security Agency and the Defense Information Systems Agency. Russ is also the editor-in-chief of ‘The Security Journal.’ He also serves as the Professor of Network Security at the University of Advancing Technology (uat.edu) in Tempe, Arizona, guiding program development and curriculum growth initiatives. Russ is the author of Hacking a Terror Network: The Silent Threat of Covert Channels (Syngress, ISBN 1-928994-98-9) due out late 2004. He has contributed to many books including Stealing the Network: How to Own a Continent (Syngress, ISBN: 1-931836-05-1), Security Assessment: Case Studies for Implementing the NSA IAM (Syngress, ISBN 1-932266-96-8), WarDriving, Drive, Detect, Defend: A Guide to Wireless Security (Syngress, ISBN: 1-931836-03-5) and SSCP Study Guide and DVD Training System (Syngress, ISBN: 1-931846-80-9). He is also a co-founder of the Security Tribe information security research web site at www.securitytribe.com.
Russ has an M.S. in Computer Systems Management from the University of Maryland, a B. S. in Computer Science from the University of Maryland, and an A. S. in Applied Communications Technology from the Community College of the Air Force. His certifications include the Certified Information System Security Professional (CISSP), Certified Information Security Manager (CISM), NSA INFOSEC Assessment Methodology (IAM), and the NSA INFOSEC Evaluation Methodology (IEM).
Greg Miles is a Co-Founder, President, Chief Financial Officer, and Principle Security Consultant for Security Horizon, Inc; a Colorado-based professional security services and training provider and veteran owned small business. He is a United States Air Force Veteran and has served in military and contract support for the National Security Agency, Defense Information Systems Agency, Air Force Space Command, and NASA supporting world-wide security efforts. He has served in various information security positions throughout his career to include: Director, Cyber Crime Response; INFOSEC Program Manager; Chief Engineer; and Senior INFOSEC Engineer. Greg has been published in multiple periodicals to include “The Security Journal” and “The International Journal on Cyber Crime”. He also co-authored Security Assessment: Case Studies for Implementing the NSA IAM (Syngress, ISBN 1-932266-96-8). Greg is also an instructor for the University of Advancing Technology (UAT) in Tempe, Arizona, in the network security department.
Greg has a Ph.D. in Engineering Management from Kennedy Western University, an M. S. in Management Administration from Central Michigan University, and a B. S. in Electrical Engineering from the University of Cincinnati. His certifications include the
Certified Information System Security Professional (CISSP), Certified Information Security Manager (CISM), NSA INFOSEC Assessment Methodology (IAM), and the NSA INFOSEC Evaluation Methodology (IEM)
Ed Fuller is the Senior Vice President and COO for Security Horizon, a Colorado Springs based information security professional services firm. He has over 28 years of experience in Operations, Communications, and Computer Information Systems and Security. He is the primary lead for INFOSEC Assessments and Training for Security Horizon and has served other companies as an INFOSEC Training Manager and Senior Security Consultant. Ed was responsible for establishing, implementing, and supporting the worldwide security program for the Defense Information Systems Agency’s (DISA) Field Security Operations (FSO). He was also a key participant on the development of Systems Security Engineering Capability Maturity Model (SSE-CMM) and has been involved in the development of the Information Assurance Capability Maturity Model (IA-CMM). He serves as a Lead Instructor for the National Security Agency (NSA) Information Assurance Methodology (IAM). Ed retired from the United States Navy with over 23 years of distinguished service.
Ed has a B.S. in Information Systems Management from the University of Maryland, University College. His certifications include the
Certified Information System Security Professional (CISSP), SANS GSEC, CMU Incident Handler Training, ISS Safe Suite Decisions, Axent Raptor 6.5 Firewall, DISA ISSM & ISSO, NSA INFOSEC Assessment Methodology (IAM), and the NSA INFOSEC Evaluation Methodology (IEM)
Bryan Cunningham has extensive experience as a cybersecurity and intelligence expert, both in senior U.S. Government posts and the private sector. Cunningham, now a corporate information and homeland security consultant and principal at the Denver law firm of Morgan & Cunningham LLC, most recently served as Deputy Legal Adviser to National Security Advisor Condoleezza Rice. At the White House, Cunningham drafted key portions of the Homeland Security Act, and was deeply involved in the formation of the National Strategy to Secure Cyberspace, as well as numerous Presidential Directives and regulations relating to cybersecurity. He is a former senior CIA Officer and federal prosecutor, founding co-chair of the ABA CyberSecurity Privacy Task Force, and, in January 2005, was awarded the National Intelligence Medal of Achievement for his work on information issues. Cunningham holds a Top Secret Security Clearance and counsels corporations on information security programs, as well as information security consultants on how to structure and conduct their assessments and remediation to mitigate potential liability.
TECHNOLOGY
BACKGROUND
There are numerous tools available to the INFOSEC professional for the purpose of conducting network technical evaluations. This makes it both confusing to select an appropriate tool and difficult to stay abreast of the current state of technology. Network Security Evaluation covers the gamut of available technical tools with an overview of how they fit and can be used to evaluate the ten baseline areas outlined by the methodology.
Rather than being dependant on any one operating system or type of tool, the authors have elected to provide options that cover different operating systems as well as both commercial and freeware tools. This will provide the reader not only with a variety of choices, but also an awareness of what is available. |
