• Skip to main content
  • Skip to primary sidebar

ConvoCourses

Cyber Security Compliance and IT Jobs

  • Cyber Security Training
  • about me.
  • Information Assurance Jobs
  • Log in

diarmf - implement

STIG Update – DISA has released the Draft Software Defined Networking (SDN) STIG Version 1

November 8, 2016 by Bruce Brown Leave a Comment

STIG Update – DISA has released the Draft Software Defined Networking (SDN) STIG Version 1


DISA has released the Draft Software Defined Networking (SDN) STIG Version 1 for review and comment.  Please provide comments, recommended changes, and/or additions to the draft STIG by 3 November 2016 on the Comment Matrix spreadsheet.  The draft STIG and spreadsheet are available at http://iase.disa.mil/stigs/net_perimeter/network-infrastructure/Pages/policy.aspx.


For all STIG related questions, please contact the DISA STIG Customer Support Desk: disa.stig_spt@mail.mil

Filed Under: diarmf - implement, STIGS Tagged With: diarmf - implement, STIG

STIG Update – Quarterly release: SRG-STIG_Library.zip

November 1, 2016 by Bruce Brown Leave a Comment

DISA has released updates to the SRG/STIG Library Compilations in .ZIP format to correspond with the latest quarterly SRG/STIG update cycle. This release also includes newly released SRGs and STIGs published since the last quarterly release of the SRG/STIG Library Compilations.

The SRG/STIG_Library.zip is a compilation of DoD Security Requirements Guides (SRGs), DoD Security Technical Implementation Guides (STIGs) ( provided in XCCDF or .pdf format), Checklists, Security Readiness Review (SRR) Tools that are available through the IASE web site’s STIG pages.

Two versions of the compilation are produced, an FOUO version and a NON-FOUO version entitled U_SRG-STIG_Library.zip and FOUO_SRG-STIG_Library.zip. The file name preceded by FOUO_ contains STIGs and related content that has been designated as FOUO. As such a DoD PKI certificate is required to download it. The file name preceded by U_ is the NON-FOUO version which does not contain FOUO. It is therefore downloadable by the general public. These compilations may be used and distributed in the same manner as the individually downloaded documents. The FOUO compilation as a whole and any separated FOUO content must be handled in accordance with customary FOUO handling and dissemination guidelines.

Please see “SRG/STIG Library Compilation READ ME” for additional information to include include download / extraction instructions and a FAQ.

All related files are available on IASE at: http://iase.disa.mil/stigs/compilations/Pages/index.aspx

Filed Under: diarmf - implement, STIGS Tagged With: diarmf - implement, implementation, STIG, stigs

Adobe Acrobat Reader DC STIGs, V1R1

February 22, 2016 by Bruce Brown Leave a Comment

DISA has released the Adobe Acrobat Reader DC STIGs Version 1.  The requirements of the STIGs become effective immediately.  The STIGs are available on IASE at http://iase.disa.mil/stigs/app-security/desktop/Pages/acrobat.aspx.

Filed Under: diarmf - implement, STIGS Tagged With: diarmf - implement, disa, STIG

Oracle 12c Database STIG Version 1

October 22, 2015 by Bruce Brown Leave a Comment

DISA has released the Oracle 12c Database STIG Version 1.  The requirements of this STIG become effective immediately.  The STIG is available on IASE
at: http://iase.disa.mil/stigs/app-security/database/Pages/oracle.aspx.

Filed Under: Risk Management For DoD IT Tagged With: diarmf - implement, implement, Oracle, STIG

DISA has released the Apple iOS9 Draft Configuration Table

October 15, 2015 by Bruce Brown Leave a Comment

DISA has released the Apple iOS9 Draft Configuration Table. Until an iOS9 STIG can be posted, the iOS 9 Configuration Table can be used as Interim guidance to secure iOS 9. The document is available on http://iase.disa.mil.

Filed Under: diarmf - implement, STIGS Tagged With: diarmf - implement, ios, ios9, STIG

DISA Draft Palo Alto Networks STIG Version 1

August 7, 2015 by Bruce Brown Leave a Comment

disa palo alto networks
disa palo alto networks

Defense Information System Agency has released a draft for Palo Alto Networks Security Technical Implementation Guide Version 1.

The Draft STIG is available at
http://iase.disa.mil/stigs/net_perimeter/network-infrastructure/Pages/firewa
ll.aspx for review and comment.

Please provide comments, recommended changes, and/or additions to the draft
STIG by 12 August 2015 on the Comment Matrix spreadsheet located at
http://iase.disa.mil/stigs/net_perimeter/network-infrastructure/Pages/firewa
ll.aspx.  Comments should be sent via NIPRNet email to:
disa.stig_spt@mail.mil.  Include the title and version of the STIG in the
subject line of your email.

Filed Under: Risk Management For DoD IT Tagged With: diarmf - implement, implement, palo alto, STIG

  • Go to page 1
  • Go to page 2
  • Go to Next Page »

Primary Sidebar

search


This is a breakdown of each of the NIST 800-53 security control families and how they relate to each step in the NIST 800-37 risk management framework process.

also available on Amazon!

View Book


This is a breakdown of each of the NIST 800-53 security control families and how they relate to each step in the NIST 800-37 risk management framework process.

also available on Amazon!

View Book


This book is an overview of how the NIST SP 800-37 risk management framework works from the perspective of an information system security officer (ISSO).

also available on Amazon!

View Book

NIST RMF 800-37 templates
Free 800-37 templates

The NIST 800 Template download contains a .doc file template and xls templates for POAMs, Federal, State, cloud based and a legacy template as well as resources where you can find more on NIST 800-37 documents for your use.

View Book

Learn to Make 6 Figures in CyberSecurity

RMF ISSO Foundations Training
RMF ISSO Foundations Training

RMF ISSO Foundations

I was an Information System Security Officer (ISSO) doing Risk Management Framework (NIST SP 800-37) for over a decade. I am a Cybersecurity veteran and I can explain (in plain English) what you DO in the Risk Management Framework process as an ISSO.

View Course

NIST SP 800-37 Presentation
NIST SP 800-37 Presentation

View Course

login

  • Register
  • Log in
  • Entries feed
  • Comments feed
  • WordPress.org

Recent Posts

  • Convocourses Podcast: Plan of Action and Milestone
  • Start with These IT Certifications (Part 1)
  • How to Tailor Security Controls in NIST 800
  • #cybersecurityjobs are recession proof
  • What IT Certifications for Information Security (part 2) (8140)

Meta

  • Register
  • Log in
  • Entries feed
  • Comments feed
  • WordPress.org

Recent Comments

  • http://Www.Finance.Ipt.Pw/ on SRG/STIG Applicability Guide and Collection Tool Update
  • Elsa7 on ConvoCourses podcast: Cyber Security day to day activity
  • Tony on STIG Update – DISA has released the Microsoft SQL Server 2016 STIG Version 1
  • horloge on SCAP Compliance Checker SCC)
  • 218 Information assurance Success Criteria – ITSECURITYSURVIVAL.COM on Information Assurance Vulnerability Alert

Tags

8140 8570 ArcSight c&a CISSP convocourses cyber cybersecurity cyber security DIACAP DIARMF diarmf - implement disa DISA STIG dodd 8140 dodd 8140 cyberspace workforce IA implement implementation info assurance information assurance information security ISSO IT it jobs it jobs in usa job jobs Linux mcafee network nist nist risk management framework nist risk management framework 800-37 podcast risk risk assessment risk management risk management framework rmf security STIG stigs unix windows


This is a breakdown of each of the NIST 800-53 security control families and how they relate to each step in the NIST 800-37 risk management framework process.

also available on Amazon!

View Book

Copyright © 2023 · Author Pro on Genesis Framework · WordPress · Log in