80 likes | 523 Vues
UNCLASSIFIED. . PURPOSE: To present and discuss: ICAN Accreditation Strategies under the Single DOIM ConceptOBJECTIVES: By the end of this presentation you will be familiar with the: Single DOIM ConceptICAN DefinitionModular ICAN Accreditation StrategyTenant Security Plans. LandWarNet 2008
E N D
1. LandWarNet 2008
2. PURPOSE: To present and discuss: ICAN Accreditation Strategies under the Single DOIM Concept
OBJECTIVES: By the end of this presentation you will be familiar with the:
Single DOIM Concept
ICAN Definition
Modular ICAN Accreditation Strategy
Tenant Security Plans
3. Agenda:
Single DOIM Concept
ICAN Terms of Connectivity BBP
ICAN Definition
Modular ICAN Accreditation
Tenant Security Plan
LandWarNet 2008
4. Single DOIM Concept
This is the Concept that Army DOIM’s have the Responsibility and Authority to manage ALL of the IT services on Army Installations connected to their network
Common DOIM IT services include NIPRNET, SIPRNET, DREN, S-DREN, Voice, VTC, email, Server Farm, etc
This applies to all Tenants on Army Installations that use DOIM connectivity, services, or bandwidth LandWarNet 2008
5. ICAN Definition
The ICAN is the sum total of all of the IT infrastructure and services connected to an Army Installation DOIM Network
DOIM Networks, Systems, and Services
Tenant Networks and Systems
Included: All networks and systems receiving connectivity through the DOIM
Excluded: Networks that receive connectivity through a non-DOIM source, or stand-alone Networks LandWarNet 2008
6. ICAN Terms of Connectivity BBP
All Tenants receiving IT connectivity from the DOIM must prepare and deliver a Tenant Security Plan to the DOIM unless they receive a waiver from CIO/G6
Describes 10 sets of requirements that must be addressed in the Tenant Security Plan
Any organization that does not provide a TSP to the DOIM, must prepare and deliver a full and valid DIACAP Accreditation in order to receive IT services and connectivity
The Tenant DIACAP Accreditation must include independent validation by an Army OIA&C approved ACA (at Tenant organization expense) and be singed by an Army CIO/G6 approved DAA LandWarNet 2008
7. Modular ICAN Accreditation Strategy
Create an Umbrella ICAN Accreditation that:
Describes the entire ICAN and all of its component systems and networks
Provides a structure to place NIPRNET, SIPRNET, DREN, and other component accreditation packages
Documents the IA processes that are common across the component systems and networks
Allows for spreading out individual component accreditations over the three year period
LandWarNet 2008
8. Modular ICAN Accreditation Structure
ICAN Umbrella
NIPRNET Module
SIPRNET Module
DREN Module
Voice Switch/VTC Module
…
Tenant Modules
Tenant Security Plans
MOAs
Tenant DIACAP Packages (if no TSP)
LandWarNet 2008
9. Tenant Security Plan (TSP)
Must address the 10 areas described in ICAN Terms of Connectivity BBP
Must provide reasonable evidence of compliance with requirements
Must be reviewed and accepted by the DOIM
Must be implemented by the Tenant organization as described in the Plan
Must be spot checked by ACA as part of the ICAN Validation effort
LandWarNet 2008