Location: Welcome: Guest  

ADOA Information Security

Security Assessment services:  

Network Assessment - a network audit aimed at determining the level of risk to an organization from network based attacks. This includes external and internal network port and vulnerability scans, onsite visits, review of your network architecture against industry best practices.

Security Incident Response - assist in responding to incidents systematically so that the appropriate steps are taken to recover quickly and efficiently from security incidents while minimizing loss or theft of information and disruption of services. Handling specific types of security incidents:

  • Denial of Service (DoS) - an attack that prevents or impairs the authorized use of networks, systems, or applications by exhausting resources
  • Malicious Code - a virus, worm, Trojan horse, or other code-based malicious entity that successfully infects a host
  • Unauthorized Access - a person gains logical or physical access without permission to a network, system, application, data, or other IT resource
  • Inappropriate Usage - a person violates acceptable use of any network or computer policies
  • Multiple Component - a single incident that encompasses two or more incidents; for example, a malicious code infection leads to unauthorized access to a host, which is then used to gain unauthorized access to additional hosts.

Standard used - NIST SP 800-61 Revision 1, SP 800-83

Proxy/Content Management - monitor and run the proxy server for ADOA including URL filtering and packet filtering for the workstation IP address space. Also reviews logs for Intrusion Detection and Prevention on the devices.

Network Switch Management - configure and monitor switches in the ADOA Data Center and DR Site. Configuration includes design of VLANS, IP Routing and security of LAN.

Intrusion Detection - manage a Tripwire server environment that customers may use to monitor change control on servers. Tripwire is an intrusion detection and data integrity product that allows you to construct a "baseline" server state representing optimal settings. Tripwire does not prevent breaches, but rather compares current state with desired state to determine if any accidental or deliberate changes have occurred. If changes are detected, they can be rolled back with minimal interruption of services.

Network Firewall - perform the following services for the firewalls in the ADOA Data Center and DR Site:

  • Configure and provision devices
  • Monitor health and security events 24/7
  • Notify customers of major security and health issues and provide event descriptions, context, and high-level remediation
  • Perform upgrades and patch management
  • Change firewall rules
  • Correlate firewall log data with information collected from other managed devices
  • Forward firewall logs for archiving and forensics
  • Integrate new product enhancements when released by vendors

Back to top | AIS Home

Security Compliance services:

Physical Security Controls - Perform a compliance assessment of physical security controls for information systems based on system categorization and apply tailoring guidance as appropriate. Standards used - FIPS 199, FIPS 200 and NIST SP 800-53, Revision 2

Specific System Controls - Perform a compliance assessment of tailored security controls based on an assessment of risk and local conditions including organization-specific security requirements, specific threat information, cost-benefit analyses, or special circumstances. Standards used - NIST SP 800-53, Revision 2 and SP 800-30

HIPAA Compliance Assessment - Perform a HIPAA Compliance assessment for those organizations that deal with electronic transactions, privacy and security of healthcare information.

Audit and TISA Compliance - Perform an assessment based on the GITA Policies, Standards and Procedures to include Management Practices, Web Services, IT Enterprise Architecture and Security.

Security Awareness Training – providing end user training to protect the confidentiality, integrity, and availability of information systems. Educating clients so that they understand their roles and responsibilities related to the organizational mission, understand the organization’s IT security policies, standards, procedures and practices; and have at least adequate knowledge of the various management, operational, and technical controls required and available to protect the IT resources for which they are responsible. Standards used - NIST SP 800-50, SP 800-16

Security Policies, Standards, and Procedures – Perform a compliance assessment of security controls documentation including system security plan, policy, standards and include justification for any refinements or adjustments to the initial set of controls documentation. Standards used - NIST SP 800-18, Revision 1

System Categorization – Perform a compliance assessment of the categorization of information systems and the information resident within those systems based on impact. Standards used - FIPS 199 and NIST SP 800-60 (Volume 1, Volume 2, Errata to Volume 2)

Data Classification – Perform a compliance assessment of the data classification of information systems and the information resident within those systems based on impact. Standards used - FIPS 199 and NIST SP 800-60 (Volume 1, Volume 2, Errata to Volume 2)

Privacy Controls – Perform a compliance assessment of Privacy Impact controls of the information systems and the information resident within those systems based on impact. Standards used - FIPS 199 and NIST SP 800-60 (Volume 1, Volume 2, Errata to Volume 2)

Back to top | AIS Home

Security Provisioning services:

Access Control of ADOA and Customer Mainframe Systems:

  • RACF Account Creation - Add new users, groups, datasets and general resources to the mainframe
  • RACF Account Modification - Modify existing users, groups, datasets and general resources on the mainframe
  • RACF Reporting - On demand reports as requested by the customer
  • RACF Password resets - Reset passwords for customers with controls in place to verify the requestor

Application Support:

  • HRIS Account Creation - Add new users to UNIX and LDAP
  • Account Modification - Modify existing users
  • Control-M Account Creation - Add new user
  • Control-M Account Modification - Modify existing user 
  • Reporting - On demand reports as request by the customer
  • Password resets - Reset passwords for customers with controls in place to verify the requestor 

Encryption:

  • Key Management - Create Public/Private key to secure data
  • Tape Encryption
  • SSL Certificates - Order, Reissue, Cancel Certificates as requested

Data Center Security:

  • Badge Access - Restrict access to areas that are job critical and required training has been completed
  • Camera Monitoring - Review and monitor movement within the Datacenter
  • 24hr Security Personnel - Provide Security Personnel to control, verify, and monitor access
  • Ongoing review of ALL Access Controls - Review all access controls, including badge readers and Security personnel on regular basis to maintain a Secure Data Center to Federal Information Security Management Act of 2002, Public Law 107-347, HIPAA CFR 45 and IRS Publication 1075 
  • Ongoing review of ALL Monitoring - Review all monitoring equipment, including cameras and DVRs on regular basis to maintain a secure data center.

Standard used - NIST SP 800-53A

Back to top | AIS Home

Contact ISD

Group Info

ISD Forms

Service Catalog
 
 
  Log In - Copyright 2006 - 2008 - Arizona Department of Administration - Privacy PolicyAccessibility
100 N. 15th Ave, Phoenix, AZ 85007 - Phone: (602) 364-4444
 
ISD Home Page AZ.gov - Arizona's Official Web Site