Download Free NSA Certified Information Security Assessment Methodology (IAM) Templates
Download Free the NSA Certified Information Security Assessment Methodology (NSA IAM) is an information security assessment methodology that baselines assessment activities. It breaks information security assessments into three phases: pre-assessment, on-site activities, and post-assessment.
I. Pre-assessment Phase
II. On-Site Activities Phase
1. Information security documentation such as policies, procedures, and baselines
2. Roles and responsibilities
3. Contingency planning
4. Configuration management
5. Identification and authentication
6. Account management
7. Session controls
8. Auditing
9. Malicious code protection
10. System maintenance
11. System assurance
12. Networking/connectivity
13. Communications security
14. Media controls
15. Information classification and labeling
16. Physical environment
17. Personnel security
18. Education, training, and awareness
III. Post-assessment Phase
| Attachment | Size |
|---|---|
| NSA-IAM-Templates.png | 40.33 KB |
| NSA-IAM-Templates.xls | 20 KB |
| NSA-IAM-Templates.xlsx | 9.66 KB |
