Department of Homeland Security (DHS) Guidelines

Network Security
Ali Turab Gilani [002-BSCS-08] Hunain Usman [006-BSCS-08] Muhammad Haadi [023-BSCS-08]

2012

Computer Science Department, GC University

Department of Homeland Security (DHS) Guidelines

Department Of Homeland Security
The Department of Homeland Security (USA) is there to ensure security of the country in every possible way. The organization has 240,000 employees who have jobs that range from border security to cyber security to even emergency response service. It comprises of numerous security departments as well as a knowledge base for the citizens of America. The information security portal that it provides to the people of America has the following details available. State Homeland Security and Emergency Services Directory Homeland Security Information Network National Fire Department Census Data Wireless Information System for Emergency Responders (WISER) Lessons Learned Information Sharing

Guidelines (Cyber Security)

However there are certain technical resources for the cyber security. Federal Network Security (FNS) IT Security Essential Body of Knowledge (EBK) (US-CERT) Information Technology Sector National Cyber security & Communications Integration Center (NCCIC) National Response Framework Resource Center (FEMA) Protecting Federal Networks Against Cyber Attack

Note: The (US CERT) is the United States Computer Emergency Readiness Team

Federal Network Security (FNS)

It works in collaboration with the federal government to cope with the cyber security threats. It has taken various initiatives to improve the security Domain Name Systems Security (DNSSEC) provides a secure authentic government website for public users to transmit information while utilizing online government services. Federal Information Security Management Act (FISMA) outlines DHS responsibilities for providing operational support to federal agencies in securing federal systems and ensuring information security performance. FISMA Reporting Service Offerings provides FISMA Reporting Shared Service Centers (SSCs) so agencies can improve security reporting using automated, efficient channels. Managed Trusted Internet Protocol Services (MTIPS) efficiently delivers Trusted Internet Connection (TIC) solutions to government customers to reduce and consolidate an agencys connections to the Internet. Risk Management Framework Service Offerings facilitates agencies use of SSCs to implement Risk Management Framework solutions, which reduce costs of completing certification and accreditation using legacy systems. Security Awareness and Training provides common suites of information systems security training products and services for the federal government. Situational Awareness and Incident Response (SAIR) provides local, tribal, state, and federal governments with quick access to Blanket Purchase Agreements to procure products and services that address gaps in configuration management, network mapping/path discovery, and vulnerability management. Trusted Internet Connections (TIC) Initiative optimizes and standardizes the security of individual external network connections used by the federal government. This improves the governments security posture by reducing and consolidating the number of external connections, thereby heightening situational awareness. Trusted Internet Connections Compliance Validations (TCV) leverages an objective, repeatable, and consistent methodology to measure a federal agency/departments compliance with the TIC Initiative and related Office of Management and Budget (OMB) directives and guidance.

IT Security Essential Body of Knowledge (EBK)

This is the quality assurance department within the organization that guarantees the security staff to be well trained and qualified.

Information Technology Sector

The Internet encompasses the global infrastructure of packet-based networks and databases that use a common set of protocols to communicate. The networks are connected by various means, and the availability of these networks and services is the collective responsibility of the IT Sectors. Note: It is operated by a combination of entities.

National Cyber security & Communications Integration Center (NCCIC)

It ensures the communication and integration between the federal and local government, the law enforcement agencies and the private sectors. It works as a component of National Protection and Programs Directorate.

National Response Framework Resource Center (FEMA)

The National Response Framework presents the guiding principles that enable all response partners to prepare for and provide a unified national response to disasters and emergencies - from the smallest incident to the largest catastrophe.

Protecting Federal Networks against Cyber Attack

In order to better protect our network systems from cyber-attacks the Department of Homeland Security stood up the National Cyber Security Division (NCSD) in 2004. Further, on January 2, 2008, Comprehensive National Cyber security Initiative (CNCI) was established to further safeguard the federal government systems from cyber threats and attacks. Also, National Cyber security Center (NCC) was formed in March 2008 which was to bring all the federal cyber security organizations to collaborate both virtually and practically to ensure national security as a whole. Moreover, the National Cyber Investigative Joint Task Force (NCIJTF) was made to include representation from the U.S. Secret Service and several other federal agencies.