SOW Annex D - Ministerio de Defensa

NATO UNCLASSIFIEDAMD-7 TO IFB-CO-12546-POL GAG - SOW Annex D• System Interconnection Security Requirement Statement (SISRS)• Security Operating Procedures (SECOPS)• Security Test and Evaluation Plan (ST&E)• Key Management Plan (KMP)1.1.8 The deliverables of the Security Accreditation Support package shall be composed inaccordance with the NATO Security policies and guidelines, as well as taking into accountthe National security rules of the Host Nation. Further on, those deliverables shall bedeveloped specifically for the GAG system and any of its interfaces to National assets (e.g.to the NDN or other National networks or systems).1.2 Schedule1.2.1 A Draft-1, Draft-2, Final Draft 1 and Final version of the Security Accreditation Supportpackage shall be delivered by the Contractor according to the Schedule of Supplies andServices (SSS) and according to section 13 of the SOW.1.3 References1.3.1 The following references shall apply:A. AC/35-D/2005-REV1: INFOSEC Management directive for communication andinformation systems (19 October 2006).B. AC/35-D/1017-Rev2: Guidelines for the Security Risk assessment and riskmanagement of communication and information system (26 February 2003).C. AC/35-D/1015-Rev 2: Guidelines for the development of Security RequirementStatements (SRSs) (29 April 2004).D. AC/35-D/1014 Rev 1: Guidelines for the structure and content of security operatingprocedures (Sec Ops) for communication and information systems (24 January 2000).E. AC/322-D/0047-REV2: INFOSEC Technical and Implementation Directive onCryptographic Security and Cryptographic Mechanisms (9 April 2009).1.3.2 The security accreditation process is described in Reference A above.1 The term “Final Draft” is defined in section 1.2.1 of the SOW.NATO UNCLASSIFIEDPage 3 of 14