Course Description
The IAM is a two-day instructor-led, detailed and systematic way of examining cyber vulnerabilities. It is a full participation course for experienced Information Systems Security analysts who conduct, or are interested in conducting INFOSEC assessments of information systems. The course teaches the NSA INFOSEC assessment process, a high-level, non-intrusive process for identifying and correcting security weaknesses in information systems and networks.

This market was originally created by PDD-63 (now Homeland Security Presidental Directive-7) requirement for vulnerability assessments of automated information systems that support the U.S. Infrastructure. In addition to assisting the governmental and private sectors, an important result of supplying baseline standards for INFOSEC assessments is fostering a commitment to improve organizations security posture. The IAM is a prerequisite for the IEM Evaluation course. You can take the IAM and IEM class in the same week (4-day session).

Course length
2 days, includes all materials and NSA's IAM certification exam.

Course Content
Individuals will be trained in the IAM so they can use their INFOSEC analysis skills along with the IAM training to provide the standardized IAM assessment service. Currently, companies and government organizations looking for outside help assessing the security posture of their information systems can choose from dozens of commercial firms that advertise INFOSEC assessment capabilities. Although these contractors all provide INFOSEC assessment services, their processes, terminology, scope and costs vary widely. The IAM course was developed for the benefit of organizations trying to obtain an INFOSEC assessment that meets their needs.

• Homeland Security Presidental Directive-7 for requirement for vulnerability assessments of automated information systems that support the U.S. Infrastructure.
• Individuals will be trained in the IAM so they can use their INFOSEC analysis skills along with the IAM training.
• Provide INFOSEC assessment services, their processes, terminology, scope and costs based upon a more standard INFOSEC assessment service which follows the NSA's recommended guidelines
• Since the IAM is a baseline methodology, the final results of the assessment service are highly dependent on the INFOSEC and analytic skills of the assessors.
• Non-technical and non-intrusive skills used to quantify, qualify, and improve an organizations security posture.
• Assess security priorities to improve the confidentiality, integrity, and availability of an organizations mission critical information systems.
• Fulfills prerequisite for NSA IEM evaluation course (IEM applies IAM concepts in software evaluation labs)

Target Student
Designed for Auditors, Consultants and Service providers involved in Federal, commercial, and private sector InfoSec. This class teaches the NSA tools, methods, grading scale, and format used to report and manage the security baseline for any organization. Ideal for compliance under Sarbanes-Oxley (SEC), FISMA (FIPS-199), FFIEC (banking), SCADA (utilites), HIPAA (healthcare) and others. This course teaches the NSA INFOSEC assessment process, a high-level, non-intrusive process for identifying and correcting security weaknesses. IEM evaluation class teaches the next phase for evaluating & testing security.

Freebies
All of our IAM students receive a free copy of Security Assessment: Case Studies for Implementing the NSA IAM as well as a license to SAINT; in addition, the students who go on to take the IEM receive a NEWT standard edition license and a 10% discount on NeVO security management software.

Course Eligibility Requirements

• U.S. Citizenship Required.
• Five years of demonstrated experience in the field of INFOSEC, COMSEC or computer security, with 2 of the 5 years of experience directly involved in analyzing computer system/network vulnerabilities and security risks
• If you do not meet these requirements, you can still take the course and learn the methodologies in a non-certified capacity.

Certification Requirements

• Gain qualification approval from NSA (coordinated by Security Horizon)
• Attend all of the two-day class
• Demonstrate an understanding of the IAM through group exercises and class discussions
• Obtain a passing grade (at least 70 percent) on the IAM test.

Course price includes all materials and the certification exam administered in the second day of course. Seating limited to 42 persons.

Pricing & Discounts

• $ 995 Open enrollment for the Public
  
  
• $ 895* ($100 Discount) for Members of
  • US Military
  • InfraGard (Nationwide - TN members receive $200 discount)
  • ISACA (Nationwide - TN members receive $200 discount)
  • HTCIA (Nationwide - Atlanta members receive $200 discount)
    
    
• $ 795* ($200 Discount) to Members of
  • ISSA (Nationwide)
  • NaSPA (Nationwide)
  • Federal, State & Local Law Enforcement
  • Federal and State Government Employees
  • ETTC (East Tennessee Technology Council)
  • ETEC (East Tennessee Economic Council)
  • InfraGard (TN Only)
  • ASIS (TN Only)
  • ISACA (TN Only)
  • HTCIA (Atlanta Chapter Only)
  • Employees and students of educational institutions that offer Committee on National Security Systems (CNSS) mapped certificates (4011, 4012, 4013, 4014, 4015, 4016).
  • Employees and students of educational institutions that are designated as National Centers of Academic Excellence in Information Assurance Education (CAEIAE).
    
    
• $ 495* ($500 Discount) for
  
  • Fountainhead College of Technology Students
  • Fountainhead College of Technology Employees
    
    *if registered at least 7 working days in advance. Identification or proof of current membership may be required.

Schedule & Location

• INFOSEC Assessment Methodology (IAM): Oct 9-10
• INFOSEC Evaluation Methodology (IEM): Oct 11-12
• Register for both courses back to back and recieve a $100 discount!
• Click for directions to Fountainhead College of Technology, Knoxville, Tennessee