The INFOSEC Evaluation Methodology (IEM) is a hands-on methodology for conducting evaluations of customer networks utilizing common technical evaluation tools. Students can expect to learn an easily repeatable methodology that provides each customer a roadmap for addressing their security concerns and increasing their security posture. This course is a follow on course to the popular National Security Agency's INFOSEC Assessment Methodology (IAM) and will result in an NSA certificate for those students meeting the appropriate qualifications.
The IEM covers the steps involved in a comprehensive evaluation of a customer's technical components, beginning with customer coordination and the definition of applicable scope for each project. Students will learn how the information defined during the IAM process will be used to create customized roadmaps for increased security posture. Hands-on experience with recognized security tools is included as part of the training in order to increase each student's familiarity with commonly used evaluation software. The course ends with instruction in the
techniques utilized to create the System Criticality Vulnerability Matrices and even provides important information on the creation of a reusable metric to measure customer security posture increase or decrease via trending mechanisms. The IEM is a 2 day technical course and most students will benefit from a prior understanding of basic networking concepts. Multiple exercises are included in this course to reinforce the key concepts and activities within the methodology. Formal comprehension of the NSA IAM is required to understand how the IAM & IEM work together to provide a complete security assessment. Students do not need their own laptop for this course. Each student will receive all relevant course documentation.
Students wishing the NSA certificate must have completed the NSA IAM certificate class and demonstrate at least 6 months of security evaluation tool usage by filling out the application for the course. This course is also open to non-IAM certified individuals on a non-certification basis.
Students for this course need to register through the Black Hat registration web site and contact iem<at>securityhorizon<dot>com to fill out the appropriate paperwork for approval.
Students wishing to be certified must meet the following requirements:
U. S. citizenship
Five years of demonstrated experience in the field of INFOSEC, COMSEC or computer security, with 2 of the 5 years of experience directly involved in analyzing computer system/network vulnerabilities and security risks.
Certification is NOT required to attend this course, but atttendance is limited to 36 students, so enroll now. Further information on the IAM course will be available at:
We Strongly urge that you register for this class no later than July 1 if you are seeking to be certified since all paperwork for certification must be approved PRIOR to the class. On-site or late registration for this class will not ensure that the necessary paperwork will be completed for certification.
For those of you who are not seeking certification, an approved waiver from NSA must be signed by students who take the course and are not eligible for certification. This paperwork must be completed prior to the class.