Information Assurance Division
The Information Assurance Division (IAD) develops governance policies and implements the Information Assurance (IA) program for all Fort Carson information systems and devices connected to the LandWarNet. The IAD advises the Installation’s Commanding General and Designated Approving Authority (DAA) on all Information Assurance issues and information Operations.
The IAD supports all installation customers. IAD maintains the unclassified and classified site (DoD Information Assurance Certification and Accreditation Process (DIACAP)) accreditation. It is responsible for the cyber security and computer network defense, as well as oversight of Information Operations. IAD functions as the installation focal point for cyber incident management.
The IAD has program responsibility to protect and defend all of the installation’s networks by ensuring availability, protecting data integrity, and providing the ability to implement effective Computer Network Defense (CND).
Branches
- Policy Branch
- The Policy Branch is responsible for:
Information Assurance Training
- (DoDI 8570.01M)
- Develop, maintain and teach Programs of Instructions (POI)
- Conduct & assist training sessions in order to support the Warfighters and Garrison tenants
- Acceptable Use Policy (AUP) manager
- ATCTS Manager
Certification & Accreditation
- DIACAP certification & accreditation
- Certificates of Networthiness (CONs)
- External Inspections - NETCOM, IMCOM, Higher Headquarters Assessment Team (HHAT), etc.
- Share Point IA Policy Portal structuring
- Dashboards
Policies development & enforcement
- Authors, amends, interprets, and manages all IA governance documents through the appropriate change, control & approval processes.
- Maintains all IA policies, memorandums, publications and instructions to include version control on an internal website
- Engineer Review Board (ERB) member to ensure all Information Technology projects meet IA program standards
- Identify security requirements in design phase
- Taskers (JTF-GNO, CTNOSC, etc.)
- Exceptions and Waivers to policies
Unit/Directorate Inspection Program
- Conduct Command and random Unit inspections
- Provide SIPR design requirements for all installation new construction as well as any building renovations requiring SIPR connectivity
- Conduct Protected Distribution Systems (PDS) inspections
- PKI NETCOM reporting and manage account revocation
- Trusted Agent and management of Alternate Smart Cards (ASCL)
- Trusted Agent and management of SIPR Tokens
- Compliance Branch
- The Information Assurance Compliance Branch’s primary responsibility is to secure, defend, and protect Fort Carson's portion of the LandWarNet. Other responsibilities include:
- Continuous monitoring of SIPR and NIPR networks
- Enforcement of AR 25-2, Information Assurance mandates and BBP
- Defend against malicious code intrusions
- Fusion, correlation, and analysis of network events
- Enforcement of Fort Carson's Network governance Policies
- Compliance scanning for vulnerability management and unauthorized software
- Wardriving for unauthorized wireless activity
- Share Point IA Compliance Portal structuring
- Engineer Review Board (ERB) member to ensure all Information Technology projects meet IA program standards
- Host Based Security System (HBSS) management for the western region of CONUS
- Registration of Ports, Protocols, and Services (PPS) with DISA
- Web and Internet traffic monitoring