What do you think?
Rate this book
Security Guide for Interconnecting Information Technology Systems
The Security Guide for Interconnecting Information Technology Systems provides guidance for planning, establishing, maintaining, & terminating interconnections between information technology (IT) systems that are owned & operated by different organizations. They are consistent with the requirements specified in the Office of Management and Budget (OMB) Circular A-130, Appendix III, for system interconnection and information sharing. A system interconnection is defined as the direct connection of two or more IT systems for the purpose of sharing data & other information resources. The document describes benefits of interconnecting IT systems, defines the basic components of an interconnection, identifies methods & levels of interconnectivity, & discusses potential security risks. The document then presents a ?life-cycle? approach for system interconnections, with an emphasis on security. Four phases are the the organizations perform preliminary activities; examine technical, security, & administrative issues; & form an agreement governing the management, operation, & use of the interconnection.?Establishing the the organizations develop & execute a plan for establishing the interconnection, including implementing or configuring security controls. ?Maintaining the the organizations maintain the interconnection after it is established to ensure that it operates properly & securely.?Disconnecting the one or both organizations may terminate the interconnection. The termination should be conducted in a planned manner to avoid disrupting the other party?s system. In an emergency, however, one or both organizations may choose to terminate the interconnection immediately. The document provides recommended steps for completing each phase, emphasizing security measures to protect the systems & shared data. The document also contains guides & samples for developing an Interconnection Security Agreement (ISA) & a Memorandum of Understanding/Agreement (MOU/A). The ISA specifies technical & security requirements of the interconnection; the MOU/A defines the responsibilities of the organizations. Finally, the document contains a guide for developing an Implementation Plan to establish the interconnection.
60 pages, Paperback
Published January 13, 2014
Ratings & Reviews
Friends & Following
Create a free account to discover what your friends think of this book!
Community Reviews
No one has reviewed this book yet.