90 likes | 233 Views
MCIWEST – MCB CAMPEN Cyber Security Brief. LtCol Voigts Deputy AC/S G-6. Agenda. MCIWEST – MCB CAMPEN Role/Relationship/Responsibility MCIWEST – MCB CAMPEN Tools and TTP’s MCIWEST – MCB CAMPEN Cyber Security Incident Mgmt Reporting Most common MCD’s/Most avoidable MCD’s Best practices.
E N D
MCIWEST – MCB CAMPEN Cyber Security Brief LtCol Voigts Deputy AC/S G-6
Agenda • MCIWEST – MCB CAMPEN Role/Relationship/Responsibility • MCIWEST – MCB CAMPEN Tools and TTP’s • MCIWEST – MCB CAMPEN Cyber Security Incident Mgmt Reporting • Most common MCD’s/Most avoidable MCD’s • Best practices
MCIWEST – MCB CAMPEN Role/Responsibility • Serve as the CSM/IAM for MCIWEST – MCB CAMPEN Region • Certification and Accreditation • OPDIR Compliance • OPADV Implementation/Notification • Serve as the ISSM for MCB CAMPEN • Coordinate/facilitate/review and submit MCAST packages coming from MCIWEST – MCB CAMPEN for SE requirements within AOR • Coordinate remediation of vulnerabilities • Scan MCIWEST – MCB CAMPEN SE networks • Ensure implementation of policy and compliance • Create and promulgate policy as required within the Region • Ensure OPDIR compliance and reporting
MCIWEST – MCB CAMPEN Relationships CDI C4 Steel Pentagon MCSC MCNOSC MARFORCYBER MCICOM MITSC SE MCIWEST MCIEAST West Pac NCR MARFOR G-6 SE MARFOREUR PENTAGON Reserves
MCIWEST – MCB CAMPEN Tools/TTP’s • Tools: • Assurance Compliance Assessment Solution (ACAS) • Automated scanning of network for vulnerabilities • Replacing Retina • Blue Coat • Monitors user’s web site activity • Resource allocations • Host-Based Security System (HBSS) • Provides centralized management of security posture of managed hosts. • Has the ability to report the enclave’s status through an automated process • TTP’s • Scan on a regular basis • Ensure implementation of OPDIRS and other configuration items
MCIWEST – MCB CAMPEN Cyber Security IcMReporting OPCON To: MCNOSC ADCON To: MARFORPAC G-6 IcM & SR Escalation OPCON To: RNOSC PAC ADCON: MCIWEST G-6 OPCON To: MITSC West RSD ADCON: Installation G/S-6 & MSC G-6
Most Common MCD’s • Classified Spillages (TS-S, S-N) • Removable Media (unauthorized devices flash drives, iPhones, iPads, etc) • Rogue Devices being added to the network • PII spillages • Pornography • Suspicious email/activity on the network
Best Practices • Don’t plug unauthorized equipment/devices • Don’t create a spillage (PII or otherwise) • Ensure ATO’s are up to date and approved