OTHER RESOURCES

(For Informational Purposes Only)

 

There are many web sites that offer useful, security-related information. The following list is provided for information and convenience only.

 

 

• CERT Coordination Center

• US CERT

• SANS Institute

• Forum of Incident Response and Security Teams (FIRST)

• National Cyber Security Partnership

• OnGuard Online
  Provides practical tips from the federal government and technology industry to help consumers guard against Internet fraud, secure their computers, and protect personal information

• The NetSmartz Workshop
  Educational resource material for children and teens

• National Vulnerability Database (NVD)
  Search U.S. government vulnerability resources for information about vulnerabilities on your systems

• Common Vulnerabilities and Exposures List (CVE)
  Search vulnerabilities by CVE name or browse the US-CERT list of vulnerabilities in CVE name order

• Open Vulnerability Assessment Language (OVAL)

• Build Security In
  Collection of software assurance and security information to help software developers, architects, and security practitioners create secure systems

• National Institute of Standards and Technology (NIST)
  NIST offers Security Practices & Checklists as well as Special Publications.

• Center for Education and Research in Information Assurance and Security (CERIAS)

• Operationally Critical Threat and Vulnerability Evaluation (OCTAVE)

• F-Secure Corporation's Data Security Summary for 2006

• Federal Cyber Service: Scholarship for Service Program (SFS)
  The SFS program seeks to increase the number of skilled students entering the fields of information assurance and computer security.

• National Centers of Academic Excellence in Information Assurance Education (NCAEIAE)
  The NCAEIAE program strengthens higher education in information assurance programs to meet America's growing requirements for cyber security professionals.

• SANS Institute

• Banking and Finance
  Financial Services ISAC

• Emergency Services
  Emergency Management and Response ISAC

• Energy
  Electricity Sector ISAC

• Food and Agriculture
  Food and Agriculture ISAC

• Government
  Multi-State ISAC

• Information and Telecommunications
  Telecommunications ISAC

• Real Estate
  Real Estate ISAC

• Transportation
  Surface Transportation ISAC

• Water
  Water ISAC

• National Strategy to Secure Cyberspace
  This document outlines an initial framework for both organizing and prioritizing efforts to protect against disruptions to our critical information systems and reduce vulnerabilities to cyber threats. The Department of Homeland Security's National Cyber Security Division (NCSD) has been charged with coordinating the implementation of the strategy.

• Office of Management and Budget Guidance on FISMA 
  The subject of this memorandum is Reporting Instructions for the Federal Information Security Management Act and Updated Guidance on Quarterly IT Security Reporting.

• Homeland Security Presidential Directive/HSPD-7
  This directive establishes a national policy for Federal departments and agencies to identify and prioritize United States critical infrastructure and key resources and to protect them from terrorist attacks.

 

IR Security