06.14Download: Security Awareness Flyer

I made this flyer a few years ago to support a security awareness initiative within the Department of the Interior (DOI) and posted them around the building…just for fun. Download and update for a quick security awareness flyer.
Download: Security Awareness Wanted Flyer – (Photoshop file)

Filed under: Security Awareness | 85 Comments

06.14Download: Sample C&A Statement of Work

It is important for a certification and accreditation (C&A) manager to be well acquainted with the internal contracting and acquisitions process within their organization. This is because a C&A manager is constantly required to bring in contractors to perform the third-party reviews required for Moderate and High security categorized information systems.
This acquisition process should [...]

Filed under: Acquisitions, Project Management, Project Planning, Security C&A | 40 Comments

06.14Download: Sample C&A Project Plan

I created a sample Certification and Accreditation (C&A) Project Plan complete with all the required phases and key milestones. Feel free to use this to jump start your next security C&A.
Download: Sample C&A Project Plan – (MS Project file)

Filed under: Project Planning, Security C&A | 4 Comments

05.31Information Security RSS Feeds

Some useful information security related rss feeds I’m currently Netvibing (no particular order):

Heuristiq
http://www.heuristiq.com/?feed=rss2 (brilliant blog by a handsome man)

GCN Daily Updates
http://www.gcn.com/security/index.xml

Infosec Writers Latest Security Papers
http://www.infosecwriters.com/isw.xml

Security Bytes
http://feeds.feedburner.com/SecurityBytes

SearchSecurity: Security Wire Daily News
http://feeds.feedburner.com/techtarget/Searchsecurity/SecurityWire

SearchSecurity: Threat Monitor
http://feeds.feedburner.com/SearchsecurityThreatMonitor

(IN)SECURE Magazine Notifications
http://feeds.feedburner.com/insecuremagazine

Slashdot: IT
http://rss.slashdot.org/Slashdot/slashdotIt

SANS NewsBites
http://feeds.feedburner.com/SansInstituteNewsbites

CGISecurity
http://www.cgisecurity.com/index.rss

TaoSecurity
http://taosecurity.blogspot.com/feeds/posts/default

Dancho Danchev’s Blog
http://feeds.feedburner.com/DanchoDanchevOnSecurityAndNewMedia

SearchSecurity: Network Security Tactics
http://feeds.feedburner.com/techtarget/searchsecurity/networksecurity

InfoWorld
http://www.infoworld.com/rss/security.xml

Hack In The Box
http://www.hackinthebox.org/backend.php

[...]

Filed under: Information Security | 2 Comments