NSA IEM: INFOSEC Evaluation Methodology

This semester, I am taking the IEM as part of a class that will be assigned to evaluate my university's network security. Last semester, I was a team leader in an IAM, an assessment of my school's organizational information security. The IAM is two full days, as well as the IEM. I am taking classes through Security Horizon, co-founded by Russ Rogers and Greg Miles, who wrote the books on NSA IAM and NSA IEM.

I'll post my thoughts throughout the day and after today's training session. In the meantime, you can see Russ', Bejtlich's, and other's comments.

Posted by Marcin on Thursday, January 18, 2007 in School and Security.