Information Assurance Roles (A6), Below Wing Flashcards
1
Q
Wing Information Assurance (IA) Office
A
Implements and oversees under base-wide IA program:
EMSEC
COMSEC
COMPUSEC
Assists all base organizations with IA issues
Provides training to Information Assurance Manager (IAM), Information Assurance Officer (IAO), EMSEC Managers, etc
2
Q
Wing EMSEC Manager
A
- POC for all EMSEC issues on base
- Works in Wing IA Office
- Assist in the installation or relocation of classified processing equipment
- Implements Emission Security Information Messages (ESIM)
- Provide training and assistance to unit EMSEC Monitors as need
- Assists users with the technical aspects of applying countermeasures
3
Q
COMSEC Manager
A
- Receives/issues/directs use of all COMSEC Material
- Works as part of Wing IA Office
- Audits user inventories
- Trains COMSEC Responsible Officer (CRO)/Alternate CRO
- Perform semiannual assessments and audits of the CRO
- Manages COMSEC violation inspections
4
Q
COMSEC Responsible Officer (CRO)
A
- Notifies the COMSEC Manager of any new requirements or changes
- Annually reviews the requirement for COMSEC material
- Keeps an accurate list of persons with authorized access to COMSEC holdings (Cryptographic Access Program)
- Conducts initial and refresher training of all COMSEC users
- Responsible for all COMSEC material in unit/perform inventories
- Perform other duties as assigned by COMSEC Manager
5
Q
Information System Users/COMSEC Users
A
- Safeguard COMSEC material until destroyed/turned in
- Report suspected compromises to CRO
- Return material to the CRO on request
- Complete Required Training
6
Q
Inquiry or Investigating Official (IO)
A
- Completes Investigations of COMSEC Incidents
- Provides information for Reports
- Determines Accountability/Responsibility for COMSEC incidents
- Makes Evaluation Recommendation
- Compromise
- Compromise Cannot Be Ruled out
- No Compromise
7
Q
Information Assurance Manager (IAM)
A
- Must be a US citizen
- Manages COMPUSEC for Large Organization
- Ensure all IAO under them receive training
- Ensure IAOs are assigned to units and manage COMPUSEC
8
Q
Information Assurance Officer (IAO)
A
- Must be a US citizen
- Supervises COMPUSEC program for a Unit
- Acts as the single liaison between the unit and IAM or IA office
- Performs unit level COMPUSEC duties
9
Q
OPSEC Program Manager
A
- Manage the organization’s OPSEC program
- Advise the commander on all OPSEC-related matters
- Have at a minimum a secret clearance
- Develop, maintain, and monitor the execution of the organization’s OPSEC program
- Develop and implement commander’s OPSEC policy and CIL
- Ensure UDMs add OPSEC awareness training to checklists
- Chair OPSEC Working Group
- Conduct Staff Assistance Visits (SAV) as required or requested
- Serve on exercise evaluation teams (EET)
10
Q
OPSEC Coordinators
A
- Assigned at subordinate organization below the wing-level
- Incorporate OPSEC into unit plans, exercises, and activities
- Develop, implement, and distribute CCs OPSEC policy and Critical Information List (CIL)
- Ensure OPSEC reviews are conducted on all unit web pages prior to the information being posted, updated, or modified
- Provide management of unit’s OPSEC training
11
Q
Wing Commanders
A
- Plays a role in the administrative aspects and enforcement of Cyber Surety and IA related policies
- Responsible for selecting primary and alternate representatives for base or squadron
- Ensuring that representatives are properly trained to safeguard the base and within squadron levels.
12
Q
Squadron Commanders
A
- Do not directly handle any part of Cyber Surety their position of leadership is used to ensure administrative functions are being properly handled
- Ensure that adequate approved security containers or facilities are available for storing COMSEC materials
- Ensure that National Security Agency (NSA) approved destruction devices are readily available for equipment that is no longer needed
- Ensure that Equipment Custodians are assigned to handle ADPE accounts and annual inventories are completed
