The Colloquium (CISSE)

Archives

A Qualitative, High Level INFOSEC Assessment Methodology (IAM)

A Qualitative, High Level INFOSEC Assessment Methodology (IAM)
A Qualitative, High Level INFOSEC Assessment Methodology (IAM)
File Size:
52.27 kB
Author:
Robert K. Smith
Date:
24 May 2001

In May 1998, the INFOSEC community became aware of the White Paper titled "The Clinton Administration’s Policy on Critical Infrastructure Protection: Presidential Decision Directive 63 (PDD-63). Shortly after this date, the National Security Agency (NSA) using its technology transfer charter, took a proactive stance to the PDD-63 by offering an INFOSEC Assessment Methodology (IAM) course to government and private sector security professionals. The intent of the course is to make available a qualitative (not quantitative) approach for carrying out a high-level policy/documentation review that is non-intrusive, uses non-attribution (the process is not an inspection or an audit), yet produces an analysis of an organization’s overall security posture.

 
 
Powered by Phoca Download
CISSE

The Colloquium recognizes that the protection of information and infrastructures that are used to create, store, process, and communicate information is vital to business continuity and security. The goal of The Colloquium is to work together to define current and emerging requirements for information assurance education and to influence and encourage the development and expansion of information assurance curricula, especially at the graduate and undergraduate levels.

GuideStar Seal of Transparency

CISSE earned a Gold Seal with GuideStar. See our non-profit profile to learn more and make a difference with your support.

Guidestar Profile

If you value our mission of service, please consider making a donation, or supporting the organization through charitable pledges.

Donate via Pledge

Recent Posts

18 Nov 2025
29th Colloquium - Presentations

Below are the abstracts and submitted slides for paper presentations at the 29th Colloquium. Article order is alphabetical and features works corresponding to CISSE™ and CCERP tracks. We kindly ask authors and presenters to please consider sending your presentation media to Andrew so they can be included in the conference proceedings.

18 Nov 2025
29th Colloquium - Impact Summary

The 29th Colloquium brought together educators, researchers, industry experts, and government leaders to advance cybersecurity education in an era defined by AI and rapid technological change. This impact summary highlights the reach, participation, and collective achievements that made this year’s event one of our most engaged and successful gatherings this decade.

© 2026 CISSE. All rights reserved. This copyright notice applies only to website content on CISSE.info. It does not apply to the Open Journal platform at CISSE.info/journal. All journal articles are © their respective authors and published under the CC BY 4.0 license.