Course Description
The IEM is a two-day instructor-led, full participation course. The INFOSEC Evaluation Methodology (IEM) is a hands-on methodology for conducting evaluations of customer networks utilizing common technical evaluation tools. Students can expect to learn an easily repeatable methodology that provides each customer a roadmap for addressing their security concerns and increasing their security posture. This course is a follow on course to the popular National Security Agency's INFOSEC Assessment Methodology (IAM) and will result in an NSA certificate for those students meeting the appropriate qualifications.

Course length
2 days, includes all materials and NSA's IEM certification exam.

Course Content
The IEM is a 2 day technical course and most students will benefit from a prior understanding of basic networking concepts. Multiple exercises are included in this course to reinforce the key concepts and activities within the methodology. Each student will receive all relevant course documentation and will be provided with a laptop computer for use during the IEM course exercises.

• The IEM covers the steps involved in a comprehensive evaluation of a customer's technical components, beginning with customer coordination and the definition of applicable scope for each project.
• Students will learn how the information defined during the IAM process will be used to create customized roadmaps for increased security posture.
• Hands-on experience with recognized security tools is included as part of the training in order to increase each student's familiarity with commonly used evaluation software.
• The course ends with instruction in the techniques utilized to create the System Criticality Vulnerability Matrices
• Provides important information on the creation of a reusable metric to measure customer security posture increase or decrease via trending mechanisms.

Formal comprehension of the NSA IAM is required to understand how the IAM & IEM work together to provide a complete security assessment. Students do not need their own laptop for this course.

Target Student
Designed for Auditors, Consultants and Service providers involved in Federal, commercial, and private sector InfoSec. This class teaches the NSA tools, methods, grading scale, and format used to report and manage the security baseline for any organization. Ideal for compliance under Sarbanes-Oxley (SEC), FISMA (FIPS-199), FFIEC (banking), SCADA (utilites), HIPAA (healthcare) and others.

Freebies
All of our IAM students receive a free copy of Security Assessment: Case Studies for Implementing the NSA IAM as well as a license to SAINT; in addition, the students who go on to take the IEM receive a NEWT standard edition license and a 10% discount on NeVO security management software.

Course Eligibility Requirements

• U.S. Citizenship Required.
• Proof of IAM certification.
• 6 months of experience conducting evaluations or utilizing evaluation tools.
• If you do not meet these requirements, can still take the course and learn the methodologies in a non-certified capacity.

Certification Requirements

• Gain qualification approval from NSA (coordinated by Security Horizon)
• Attend all of the two-day class
• Demonstrate an understanding of the IEM through group exercises, labs, and class discussions
• Obtain a passing grade (at least 70 percent) on the IEM test.
• NSA must approve all attendees expecting to receive the NSA certificate. In order to accomplish this, Security Horizon needs completed IEM Registration Packages from all attendees ASAP. It is HIGHLY recommended that all attendees provide their registration packets to Security Horizon no later than 15 days prior to the course start date, to assure completion of NSA processing. Otherwise, no guarantee of NSA review and approval can be made.

Course price includes all materials and the certification exam administered in the second day of course. Seating limited to 28 persons.

Pricing & Discounts

• $ 1495 Open enrollment for the Public
  
  
• $ 1395* ($100 Discount) for Members of
  • US Military
  • InfraGard (Nationwide - TN members receive $200 discount)
  • ISACA (Nationwide - TN members receive $200 discount)
  • HTCIA (Nationwide - Atlanta members receive $200 discount)
    
    
• $ 1295* ($200 Discount) to Members of
  • ISSA (Nationwide)
  • NaSPA (Nationwide)
  • Federal, State & Local Law Enforcement
  • Federal and State Government Employees
  • ETTC (East Tennessee Technology Council)
  • ETEC (East Tennessee Economic Council)
  • InfraGard (TN Only)
  • ASIS (TN Only)
  • ISACA (TN Only)
  • HTCIA (Atlanta Chapter Only)
  • Employees and students of educational institutions that offer Committee on National Security Systems (CNSS) mapped certificates (4011, 4012, 4013, 4014, 4015, 4016).
  • Employees and students of educational institutions that are designated as National Centers of Academic Excellence in Information Assurance Education (CAEIAE).
    
    
• $ 1000* ($495 Discount) for
  
  • Fountainhead College of Technology Students
  • Fountainhead College of Technology Employees
    
    *if registered at least 7 working days in advance. Identification or proof of current membership may be required.

Schedule & Location

• INFOSEC Assessment Methodology (IAM): Oct 9-10
• INFOSEC Evaluation Methodology (IEM): Oct 10-11
• Register for both courses back to back and recieve a $100 discount!
• Click for directions to Fountainhead College of Technology, Knoxville, Tennessee