General Security Flashcards
Discuss the difference between the SSO and Security Manager
SSO: Special Security Officer. Principal advisor on the SCI security program. Responsible for the operation and security of the SCIF
Security Manager: Control, inventory, security, and management of all information systems (IS) hardware and software in the command. SCIF systems
Define both loss and a compromise of classified material, and the steps taken in the event you discover either has occurred
Compromise: unauthorized disclosure of classified information
Possible compromise: classified information is not properly controlled
Steps: Take custody of information, notify security manager/EKMS manager/CO, CO initiates preliminary inquiry (PI) and notifies NCIS, report sent to CNO, Chain of Command (CoC) remediates practice dangerous to security
Discuss the duties of a command Information Assurance Manager (IAM) to include spillage procedures
IAM: Information Assurance Manager
Runs all aspects of cyber security plan and provides leadership to the cyber security team
ISSM: Information Systems Security Manager. Hardware/software of an IT system
ISSO: Information Systems Security Officer: in charge of an IT system
IAO: Information Assurance Officer. Responsible to the ISSM for an aspect of the cybersecurity plan
TSCO: Top Secret Control Officer
Oversight and access of TS information in the command
Discuss the various functions of a STE to include establishing secure communications, proper clearance levels, key control and custodian responsibilities
STE: Secure Terminal Equipment
Capable of secure voice and data transfer over phone line. Unclassified when Fortezza card not inserted.
Fortezza card contains NSA approved security microprocessor (capstone) that implements the skip jack encryption algorithm
