Help Information System Security Manager Toolkit

I am a new ISSM – how do I get started?

• What training is available to me?
• What are my key resources for information?
• I need more information about working in the National Industrial Security Program (NISP).

• Where can I find information on how my facility receives or maintains its facility security clearance?
• What do I need to know about personnel security clearances?
• What information is available about my facility's reporting obligations?
• I need to know about building a security program.

• What threats do cleared facilities face?
• What should I know about the insider threat?
• Where can I find information about specifically about cyber threats?

• What general resources are available about protecting classified information?
• Where can I learn about the physical security of information systems?
• What should I know about general safeguarding and handling procedures?
• Where can I find information on the disposal and destruction of classified information?

• What guidance is available to me about securing my facility's information systems?
• I need to know about mobile security.
• What information exists about networksecurity?
• Where can I learn about the physical security of information systems?
• Where can I learn about intrusion detection?

• I want to understand the Assessment and Authorization (A&A) process.
• Where can I find information about A&A Process tools and templates?
• What are other key resources on the A&A Process?

• Where can I find general information on responding to security incidents?
• I need information on security incidents involving information systems.

• Where can I find information on authorization and auditing?