Requirement: The site IAO will maintain an up-to-date library to include, at a minimum.
- CJCSI 6215.01B, 23SEP01, Policy For Department Of Defense Voice Networks
- CJCSM 6510.01, 15 MAR02, Defense In Depth Information Assurance and Computer Network Defense
- DODI 8100.3, 16 JAN 03, Department of Defense DOD Voice Networks
- DODD 8500.1, 24OCT02, Information Assurance- DODI 8500.2, 6FEB03, Information Assurance Implementation
- DSN STIG - Other STIGs applicable to equipment or systems that are the responsibility of the IAO
- A copy of the Security Assessment Report and Certifying Authority’s Recommendation Memo to the DSAWG for each DSN APL certified system or product installed at the site that are the responsibility of the IAO
- The SSAA for the site(s)and system(s) for which the IAO is responsibleThe ISSO/IAO is responsible to maintain a library of relevant security documentation and make this documentation available to users, administrators, maintainers, and managers associated with the DSN. The minimum documents that the ISSO/IAO should maintain are the: CJCSI 6215.01B, 23 SEP 01, Policy For Department Of Defense Voice Networks; CJCSM 6510.01, 23 MAR 2003, Defense In Depth Information Assurance and Computer Network Defense; DODD 8500.1, 24 OCT 02, Information Assurance; DODI 8500.2, 6 FEB 03, Information Assurance Implementation; DSN Security Guide (under revision). The library will support the required security training program. |