NEW NSA INFOSEC EVALUATION METHODOLOGY (IEM)

The IEM is the latest certification for FISMA. Two-day instructor-led, full participation course. The INFOSEC Evaluation Methodology (IEM) is a hands-on methodology for conducting evaluations of customer networks utilizing common technical evaluation tools. Students can expect to learn an easily repeatable methodology that provides each customer a roadmap for addressing their security concerns and increasing their security posture. This course is a follow on course to the popular National Security Agency's INFOSEC Assessment Methodology (IAM) and will result in an NSA certificate for those students meeting the appropriate qualifications.

Course length 2 days, includes all materials and certification exam. You earn 16 CPE credits for attending this course which you can use for renewal/continuing education requirement of other certifications.

Target Student: Designed for Auditors, Consultants and Service providers involved in Federal, commercial, and private sector InfoSec. This class teaches the NSA tools, methods, grading scale, and format used to report and manage the security baseline for any organization. Ideal for compliance under Sarbanes-Oxley (SEC), FISMA (FIPS-199), FFIEC (banking), SCADA (utilites), HIPAA (healthcare) and others.

Course Content

The IEM is a 2 day technical course and most students will benefit from a prior understanding of basic networking concepts. Multiple exercises are included in this course to reinforce the key concepts and activities within the methodology. Each student will receive all relevant course documentation and will be provided with a laptop computer for use during the IEM course exercises.

• The IEM covers the steps involved in a comprehensive evaluation of a customer's technical components, beginning with customer coordination and the definition of applicable scope for each project.
• Students will learn how the information defined during the IAM process will be used to create customized roadmaps for increased security posture.
• Hands-on experience with recognized security tools is included as part of the training in order to increase each student's familiarity with commonly used evaluation software.
• The course ends with instruction in the techniques utilized to create the System Criticality Vulnerability Matrices
• Provides important information on the creation of a reusable metric to measure customer security posture increase or decrease via trending mechanisms.

Formal comprehension of the NSA IAM is required to understand how the IAM & IEM work together to provide a complete security assessment. Students do not need their own laptop for this course.

Course Eligibility Requirements

• U.S. Citizenship Required. (NSA has made some past exceptions for non US Citizens working in the U.S.)
• Proof of IAM Certification
• 6 months of experience conducting evaluations or utilizing evaluation tools
• If you do not meet these requirements, you might still be able to take the course and learn the methodologies in a non-certified capacity. Inquire for details.

Certification Requirements - To qualify for an NSA IEM certificate of completion, students must:

• Gain qualification approval from NSA (coordinated by Security Horizon)
• Attend all of the two-day class
• Demonstrate an understanding of the IEM through group exercises, labs, and class discussions
• Obtain a passing grade (at least 70 percent) on the IEM test.
• NSA must approve all attendees expecting to receive the NSA certificate. In order to accomplish this, Security Horizon needs completed IEM Registration Packages from all attendees ASAP. It is HIGHLY recommended that all attendees provide their registration packets to Security Horizon no later than 15 days prior to the course start date, to assure completion of NSA processing. Otherwise, no guarantee of NSA review and approval can be made.

Course price includes all materials, daily refreshments, and the IEM certification exam administered in the second day of course. Seating limited to 36 persons.

^$ 1495 Open enrollment for the Public

^$ 1395 ($100 Discount) to Members of Federal/State government, ASIS, ISSA, Infragard, and ISACA if registered at least 7 working days in advance.