Help Information System Security Manager Toolkit
This toolkit will quickly point you to the resources you need to help you perform your role as an Information System Security Manager (ISSM). Do you have a question about how to do something or need more information about a topic?
Review the questions below to see which category of resources will help you.
ISSM Overview
I am a new ISSM – how do I get started?
- What training is available to me?
- What are my key resources for information?
- I need more information about working in the National Industrial Security Program (NISP).
Facility Security Program
- Where can I find information on how my facility receives or maintains its facility security clearance?
- What do I need to know about personnel security clearances?
- What information is available about my facility's reporting obligations?
- I need to know about building a security program.
Threats to Cleared Facilities
- What threats do cleared facilities face?
- What should I know about the insider threat?
- Where can I find information about specifically about cyber threats?
Safeguarding
- What general resources are available about protecting classified information?
- Where can I learn about the physical security of information systems?
- What should I know about general safeguarding and handling procedures?
- Where can I find information on the disposal and destruction of classified information?
System & Network Security
- What guidance is available to me about securing my facility's information systems?
- I need to know about mobile security.
- What information exists about networksecurity?
- Where can I learn about the physical security of information systems?
- Where can I learn about intrusion detection?
A&A Process
- I want to understand the Assessment and Authorization (A&A) process.
- Where can I find information about A&A Process tools and templates?
- What are other key resources on the A&A Process?
Security Incidents
- Where can I find general information on responding to security incidents?
- I need information on security incidents involving information systems.
Authorization & Auditing
- Where can I find information on authorization and auditing?