Location via proxy:   [ UP ]  
[Report a bug]   [Manage cookies]                
Scribd Logo
Upload

Welcome to Scribd!

  • 346 views

    Introduction To Operations Security (OPSEC) : 1 Security Is Everyone's Responsibility - See Something, Say Something!

    Uploaded by

    Lawrence R. San Juan
    This document introduces Operations Security (OPSEC) and defines it as a process to identify, analyze, and control critical information by viewing operations from an adversary's perspective. It outlines the five steps of OPSEC: (1) identify critical information, (2) analyze threats, (3) discover vulnerabilities, (4) assess risks, and (5) develop countermeasures. The document emphasizes that OPSEC is important for national security and is everyone's responsibility.

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Download as PPT, PDF, TXT or read online from Scribd

    Introduction To Operations Security (OPSEC) : 1 Security Is Everyone's Responsibility - See Something, Say Something!

    Uploaded by

    Lawrence R. San Juan
    346 views16 pages
    This document introduces Operations Security (OPSEC) and defines it as a process to identify, analyze, and control critical information by viewing operations from an adversary's perspective. It outlines the five steps of OPSEC: (1) identify critical information, (2) analyze threats, (3) discover vulnerabilities, (4) assess risks, and (5) develop countermeasures. The document emphasizes that OPSEC is important for national security and is everyone's responsibility.

    Original Title

    4. Operational Security

    Copyright

    © Attribution Non-Commercial (BY-NC)

    Available Formats

    PPT, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    This document introduces Operations Security (OPSEC) and defines it as a process to identify, analyze, and control critical information by viewing operations from an adversary's perspective. It outlines the five steps of OPSEC: (1) identify critical information, (2) analyze threats, (3) discover vulnerabilities, (4) assess risks, and (5) develop countermeasures. The document emphasizes that OPSEC is important for national security and is everyone's responsibility.

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Download as PPT, PDF, TXT or read online from Scribd
    Download as ppt, pdf, or txt
    346 views16 pages

    Introduction To Operations Security (OPSEC) : 1 Security Is Everyone's Responsibility - See Something, Say Something!

    Uploaded by

    Lawrence R. San Juan
    This document introduces Operations Security (OPSEC) and defines it as a process to identify, analyze, and control critical information by viewing operations from an adversary's perspective. It outlines the five steps of OPSEC: (1) identify critical information, (2) analyze threats, (3) discover vulnerabilities, (4) assess risks, and (5) develop countermeasures. The document emphasizes that OPSEC is important for national security and is everyone's responsibility.

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Download as PPT, PDF, TXT or read online from Scribd
    Download as ppt, pdf, or txt
    of 16

    Introduction to Operations Security (OPSEC)

    Updated 09/28/11

    Security is Everyone's Responsibility See

    Objective
    Understand the core of Operations Security (OPSEC) Define & identify targets and threats Establish countermeasures Identify the Critical Information Commandments Decipher the value of information
    Security is Everyone's Responsibility See

    What is OPSEC?
    Have you ever taken precautions against Someone
    breaking into your house while youre on vacation? stealing your purse? stealing packages from your car while your shopping? fraudulently using your credit card? Then you have used OPSEC!
    Security is Everyone's Responsibility See

    What is OPSEC?
    OPSEC is a risk management instrument that enables a manager or commander to view an operation or activity from the perspective of an adversary. It is a process of identifying, analyzing and controlling critical information.
    4

    Security is Everyone's Responsibility See

    What is OPSEC?
    Identify Critical Information
    Analyze Threats Discover Vulnerabilities Assess Risks Develop
    Spies Home Theft Ops Privacy Caution Terror Foresight

    Countermeasures

    Security is Everyone's Responsibility See

    What is OPSEC?
    Identify Critical Information:
    Personal information, operational info, itineraries, passwords, patterns, changes in patterns, OPLAN and orders, information base systems, etc..

    Analyze Threat:
    Adversaries, Intelligence agencies Open source information, clandestine operations, eavesdropping, photographing, etc

    Security is Everyone's Responsibility See

    What is OPSEC?
    Discover Vulnerabilities:
    Flow of information, operations, timing of events, how an adversary would acquire the information, etc

    How would the adversaries access to such information impact the organization?

    Assess Risks:
    Estimated loss x impact of risk x likelihood of risk = $ Does the solution outweigh the loss?
    7

    Security is Everyone's Responsibility See

    What is OPSEC?
    Develop Countermeasures:
    are based on the vulnerabilities and inherent risks.

    Are dictated by cost, timing, feasibility, and imagination of involved personnel. Simplicity, straightforwardness, and inexpensiveness are key to the most effective countermeasure solutions.

    OPSEC is a DIFFERENT WAY of SEEING


    8

    Security is Everyone's Responsibility See

    How Do I Identify Threats & Vulnerabilities?


    Take note of suspicious behavior
    HUMINT If you see something, say something

    Be consistent with the testing of systems


    There is always room for improvement

    Security is Everyone's Responsibility See

    Critical Information Commandments


    1. Thou must protect the information that the adversary needs to accomplish his mission.
    2. Thou shall not try to protect everything. 3. Consider who thy adversaries are and what

    information they require to inflict harm to you.


    Security is Everyone's Responsibility See

    10

    Critical Information Commandments


    4. Thou shall consult all sources of information to determine what thine enemies know about you.
    5. Once thou has determined what information is critical, thou shall

    determine if that information is associated with thine activities.


    Security is Everyone's Responsibility See

    What Information Should I Protect?


    Information that the adversary needs to accomplish their mission. Intelligence information

    Technical information on communications

    Security is Everyone's Responsibility See

    What Information Should I Protect?


    Tactical information concerning intentions Scientific information regarding new technologies Military capabilities

    Commercial information on new technologies


    Security is Everyone's Responsibility See

    What Information Should I Protect?


    Military weapons information:
    Capabilities, manufactures, purpose, vulnerabilities, effectiveness, type, testing details, etc

    Scientific Industrial Information


    Technology & Research Technical specifications Marketing plans Key personnel Breakthroughs
    1

    Security is Everyone's Responsibility See

    What Information Should I Protect?


    Law Enforcement plans & information sources
    Warrants, Witnesses, Evidence, Capabilities, Raids, Who, What, Where, How, etc

    Security is Everyone's Responsibility See

    15

    Conclusion
    OPSEC is critical to our National Security
    OPSEC is everyones concern and responsibility OPSEC may mean the success or failure of our mission

    Security is Everyone's Responsibility See

    16

    You might also like