Information Security Management IF201.01
Description: This mid-level course helps provide the student with a comprehensive understanding of policies and procedures of the Department of Defense (DoD) Information Security Program (ISP). Lessons emphasize security classification, downgrading and declassification, and safeguarding to include: access control, dissemination control, accountability, security storage, disposal, destruction, and transmission; violations and compromises, security education, and program oversight. Students can discuss ideas, issues, problems, and possible solutions with key representatives of those executive branch organizations responsible for the ISP. The intent of this course is to provide knowledge and skills for students to effectively implement and/or oversee DoD ISP policies and guidance.
The course is administered in two phases:
Phase I is the prerequisite eLearning courses/exams which provide a comprehensive introduction to common DoD security practices.
Phase II is the instructor-led course. You are required to successfully complete Phase I before requesting registration for Phase II.
Learning Objectives: This course is designed to enable students to:
- Relate and illustrate fundamental policies of the ISP as stated in Executive Order (EO) 13526; 32 C.F.R. Information Security Oversight Office (ISOO) Final Rule; and DoDM 5200.01, Information Security Program
- Apply fundamental principles of security management to development, implementation, and evaluation of ISPs within their activities
- State the role of the security manager in developing and implementing an ISP
- Relate and illustrate the contribution of included and related programs
- Identify organizations involved in developing and implementing the DoD ISP and related programs
- Identify and locate directives, guidance, and supporting publications containing guidance and information concerning the ISP
Delivery Method: Instructor-led
Length: 5 days
Target Audience: This course is for DoD civilian, military, and contractor personnel with primary duty as an information security specialist or manager within a DoD Component ISP. The course is also appropriate for part-time information security specialists or managers, persons requiring the course as part of their training in an Information Security Management career field, and Federal employees with responsibilities related to information security. Students are also expected to have a functional working knowledge of the DoD ISP.
- Clearance Requirements: Secret
- Attendance Requirements: Full-time attendance
- Exam Requirements: Students must earn an 80 percent cumulative grade average on practical exercises and the comprehensive final examination.
Prerequisites:The Phase I eLearning requirements are listed below in the recommended order of completion. You must complete all identified prerequisites in order to request registration in Phase II.
- Introduction to Information Security IF011.06
- Original Classification IF102.06
- Derivative Classification IF103.06
- Marking Classified Information IF105.06
- Security Classification Guidance IF101.06
- Transmission and Transportation for DoD IF107.06
- Storage Containers and Facilities PY105.06
- Special Access Programs (SAP) Overview SA001.06
- Integrating CI and Threat Awareness into Your Security Program CI010.06
- Risk Management for DoD Security Programs GS102.06
- Information Security Emergency Planning IF108.06
- Introduction to the Risk Management Framework (RMF) CS124.06
- Unauthorized Disclosure of Classified Information for DoD and Industry IF130.06
- ACE Credit Recommendation: (What's this?): Three(3) semester hours, upper division baccalaureate degree category
- Professional Development Units (PDU) per SPēD: 45
System Requirements: Check if your system is configured appropriately to use STEPP.
IF STEPP DOES NOT RECOGNIZE PREREQUISITE COURSES, CONTACT THE Help Desk.
CDSE courses are intended for use by Department of Defense and other U.S. Government personnel and contractors within the National Industrial Security Program.