Security Disciplines for Objective 1: Support
 |
"The need to protect our computer networks and criminal intelligence information often falls victim to tight budgets and competition with higher visibility operational needs. The criminal justice community needs to be kept informed of the security risks we are facing and the security practices that are necessary to protect our networks and data resources. Without this knowledge, there is little hope of security safeguards receiving the attention and budgetary priorities they deserve." Alan Rodbell |
| Information Security Disciplines | Definition and Relevance |
|---|---|
| 1-1. Governance | Identifies the practices applied to establish, manage, and enforce information security policy. |
| 1-2. Physical Security | Protects against compromises in security that may arise from facility and environmental vulnerabilities. |
| 1-3. Personnel Security Screening | Includes the processes applied to determine if personnel warrant the level of trust required to access sensitive justice information and systems. |
| 1-4. Separation of Duties | Requires the segregation of administrative, development, security, and user functions to provide security checks and balances. |