implement

What is Risk Management Framework NIST 800 37

June 20, 2016 by Bruce Brown Leave a Comment

Risk Management is being aware of and taking actions to prepare for probable unfavorable outcomes.

Risk Management Framework is a process the implement risk management in an organization.

There are (6) steps to the RMF:
1. Categorize
2. Select
3. Implement
4. Assess
5. Authorize
6. Continuous Monitoring

More on the Risk Management Framework Steps here:
http://diarmfs.com/risk-management-framework-steps/

IASE to Begin GovDelivery for STIG Update Notices

March 14, 2016 by Bruce Brown Leave a Comment

STIG Update subscribers,

We’ve recently switched to GovDelivery to manage and send out our STIG Update notices.

There will be a Welcome Email sent shortly from GovDelivery, inviting you to update your subscription profile. If you do not receive the Welcome Email, please check your Spam or Bulk E-Mail. Our email may have been blocked and redirected by accident. To avoid this in the future, please add ‘subscriptions@disa.mil’ and ‘disa@public.govdelivery.com’ to your ‘Approved Senders’ list by following the below steps:

Outlook 2010

– From the ‘Home’ tab, select ‘Junk -> Junk E-Mail Options’

– Select the ‘Safe Sender’ tab in the ‘Junk E-Mail Options’ window and Add ‘subscriptions@disa.mil’ and ‘disa@public.govdelivery.com’

To update your account password, subscribe to additional topics or remove your email address from the list, please visit the link to the Subscriber Preferences page found in the Welcome Email.

If you DO NOT receive the Welcome Email, you can still add your email on the Subscription page:

https://public.govdelivery.com/accounts/USDISA/subscriber/new?topic_id=USDISA_181

Very respectfully,

– The IASE Web Team

Announcement of the Adobe ColdFusion 11 STIG Version 1

December 16, 2015 by Bruce Brown Leave a Comment

DISA has released the Adobe ColdFusion 11 STIG Version 1. The requirements of this STIG become effective immediately. The STIG is available on IASE at:

http://iase.disa.mil/stigs/app-security/app-servers/Pages/ColdFusion.aspx

DISA has released the Palo Alto Networks STIG Version 1

December 15, 2015 by Bruce Brown Leave a Comment

DISA has released the Palo Alto Networks STIG Version 1.

The requirements of the STIG become effective immediately. The STIG is available at http://iase.disa.mil/stigs/net_perimeter/network-infrastructure/Pages/firewall.aspx.

McAfee VirusScan Enterprise for Linux (VSEL) 1.9x/2.0x STIGs, V1R1

December 11, 2015 by Bruce Brown Leave a Comment

DISA has released the McAfee VirusScan Enterprise for Linux (VSEL) 1.9x/2.0x STIGs Version 1.

The requirements of the STIGs become effective immediately. The STIGs are available on IASE at http://iase.disa.mil/stigs/app-security/antivirus/Pages/antivirus.aspx.

Oracle 12c Database STIG Version 1

October 22, 2015 by Bruce Brown Leave a Comment

DISA has released the Oracle 12c Database STIG Version 1. The requirements of this STIG become effective immediately. The STIG is available on IASE
at: http://iase.disa.mil/stigs/app-security/database/Pages/oracle.aspx.