Accession Number : AD1041135

Title :   Air Force IT System Security Compliance with Law and Policy

Descriptive Note : Technical Report


Personal Author(s) : Michael,Randy J

Full Text :

Report Date : 01 Apr 2016

Pagination or Media Count : 33

Abstract : As the warfighters need for Information Technology (IT) and the data contained within increases, so does the need for Information Assurance (IA) (data integrity) to support mission assurance. To ensure IA and to support the mission, changes need to be made to Air Force IT policies and methodologies to facilitate compliance with public laws, DoD guidance, and ensure IT security to support the warfighter. To support those needs there are public laws in place mandating IT security, as well as a plethora of DoD and AF policies, instructions, and methodologies to further the goal of accomplishing those requirements. The issue at hand is the complexity of having layered implementation of a requirement so vital to the warfighter, and the seemingly inherent bureaucracy those layers of policy and methodology impose of the IA practitioner working to secure and comply with the requirements of public law. Currently the AF and DoD are working on multiple fronts to instill IA in IT, focus resources, and support the warfighter. The AF and DoD need to focus on the warfighter and consolidate the DoD IT footprint to the greatest extent practicable. This will remove excess layers of policy and bureaucracy; enabling the implementation of IA by streamlining down to those requirements which both secure data and support the warfighter

Descriptors :   information systems , information security , information assurance , computer security , air force , department of defense , standards , instructions , methodology , costs , risk management , cloud computing

Subject Categories : Computer Systems Management and Standards

Distribution Statement : APPROVED FOR PUBLIC RELEASE