TSP aims to be the leading provider of Information Systems Security Program Management (ISSPM) Training and Certification, for Security Professionals working for the Federal Government, Department of Defense and Intelligence Community Agencies.
OUR MISSION: PROTECTING NATIONAL SECURITY INFORMATION
The events of September 11th strengthened our companies resolve and mission to protect the Classified and Sensitive information Systems and Networks that play an important role in the United States (U.S.) Critical Information Infrastructure; the Federal Government, the Department of Defense and the Intelligence Community. (Referred Throughout As: USG Agencies)
There is an urgent need for government, government contractors and the military services to field well-trained and competent Information Systems Security Professionals ISSP's). Adequate training is not an option, is mandated in various U.S. Government regulations, and is essential for ensuring a competent workforce of ISSP's across all USG agencies.
Fighting the War on Terrorism, Cyber Crimes, Espionage and Insider Threats will be a multifaceted undertaking. TSP has the knowledge, skills and abilities to provide it's clients with one of the most structured and comprehensive ISSPM Training Courses and Certification Programs for Information Systems Security Professionals.
U.S. GOVERNMENT POLICY ON PROTECTING CLASSIFIED INFORMATION
Classified Information is defined as any information, that if disclosed to unauthorized people, could jeopardize U.S. Government interests, institutions, foreign relations, or national security.
As the U.S. Government becomes more and more technology-oriented, the Information Assurance (IA) and Information Security (IS) missions become increasingly challenging. These missions involve protecting all Classified and Sensitive Information Systems and Networks that are used to create, store, process or distribute Classified or Sensitive information. U.S. Government policy requires all Classified and Sensitive Information to be appropriately safeguarded to ensure the confidentiality, integrity, and availability of the information. Safeguards will be applied such that information is accessed only by authorized persons and is used only for its authorized purpose, retains its content integrity and is available to satisfy mission requirements.
Adequate security of these Classified and Sensitive Information Systems and Networks is a mandatory requirement, not an option. USG Agency Directors, Chief Information Officers, Information Security Professionals and Network Security Engineers / Administrators all have a fundamental management responsibility to protect these Classified and Sensitive Information Systems and Networks.
All USG Agencies are required to comply with core security requirements; Federal Information Security Management Act (FISMA) and Office of Management and Budget (OMB) requirements for IT systems security. Additional security requirements from the Director Of National Intelligence (DNI) and the Committee on National Security Systems (CNSS) may apply to DoD and IC Agencies. (Specific Agency Regulations May Also Apply).
FISMA is a comprehensive framework for securing the U. S. Governments information technology (IT). FISMA provides a set of specific security requirements for USG agencies on how to plan for, budget, implement, and maintain secure systems.
All USG agencies must develop, implement and manage a FISMA complaint Information Systems Security Program, to provide security for the data and IT systems that support its operations and assets, including both its own systems as well as those belonging to other agencies, contractors, and others supporting its mission.
Not only do all USG agencies receive an annual grade for their FISMA compliance, but these grades are made public on at least one U.S. Federal Government web site. A high grade on the FISMA report card indicates that an agencies systems are secure, their data is locked down, and it gives the American people public verification of that fact.
Click Here For:
Failure to pass a FISMA inspection can result in unfavorable publicity for an agency, increased oversight of the agency, possible computer breaches, and even a reduction in an agencies IT budget. If an agency fails to comply with FISMA, or gets a low grade, it's instantly public knowledge. Unfortunately, in recent years the media covering government IT affairs has developed a fondness for reporting on agencies FISMA grades.
A low score
can severely impact an agencies reputation and threaten the jobs
of those who are responsible for regulatory compliance. Chief
Information Officers (CIOs) may have to testify before U.S.
Congress to explain their inadequate performance. Worst of all,
the Office of Management and Budget (OMB) may delay or cancel
funding for agency programs.
For an agency to comply with FISMA, it must have a well structured and defined Information Systems Security Program, as outlined in the above referenced GAO 2009 Report. Key Security Professionals in an agency that are responsible for ensuring FISMA compliance are the; Designated Approving Authority (DAA), Chief Information Officer (CIO), Senior Agency Information Security Officer (SAISO) and Information Systems Security Managers and Officers (ISSM's / ISSO's). These Security Professionals must thoroughly understand core security requirements; U.S. Federal Laws, FISMA compliance requirements and Office Of Management and Budget compliance requirements, as well as their specific agency regulations and requirements.
If these Security Professionals have not attended an Information Systems Security Program Management Training Course that teaches FISMA compliance and the core security requirements, these Security Professionals may have a difficult time achieving FISMA compliance for their agency, and continued efforts will become both difficult and costly.
INFORMATION SYSTEM SECURITY / INFORMATION ASSURANCE TRAINING COURSE
ISSPM TRAINING COURSE AND ISSPMP CERTIFICATION
Click Here For:
CURRENT / PAST CLIENTS:
DEFENSE CONTRACTORS / RECRUITERS
To list a job/position or your company contact information on our website, please submit postings to email@example.com
INFOSEC PROFESSIONAL RESUMES