![[NASA Logo]](../Images/nasaball.gif)
| |
NASA Procedures and Guidelines |
This Document is Obsolete and Is No Longer Used.
|
|
P.1 Purpose
P.2 Applicability
P.3 Authority
P.4 References
P.5 Cancellation
1.1. Objectives of NASA`s IT Security Program
1.2. Philosophy of NASA`s IT Security Program
1.3. Applicability of this Document
1.4. Audience for this Document
1.5. Key Elements of the IT Security Program
1.6. Technical Phrasing and Language
1.7. Authority of this Document
2.1. Agency Management Roles
2.2. Center Management and Key IT Security Roles Within Centers
2.3. Center Support Roles
2.4. Customer Roles
3.1. Metrics Table
3.2. Assignment of Responsibility
3.3. Information Technology Security Plan
3.4. Periodic Reviews
3.5 Authorization to Process
3.6 System Documentation Reviews
3.7 Awareness and Training
3.8 Incident Reporting and Response
4.1. IT Security in the Life-Cycle Process
4.2. IT Security Planning
4.3. IT Security Awareness and Training
4.4. IT Security Incidents
Reporting and Handling
4.5. Personnel Screening
4.6. Penetration Testing
4.7. Granting Access
4.8. Appropriate Use of Information Technology Resources
4.9. Software Usage
4.10. Access Warning Banner, Notification of Rights, and Monitoring
4.11. Use of Encrpytion Technology
4.12. National Security Information
5.1. IT Security Plans
5.2. Center IT Security Plans
5.3. IT Security Contingency Plans