Document LpzbMYk1vbzngvbVYnOjeb1K5

DownloadViewSend us a messageRandom document
To: From: Sent: Subject: Jackson, Ryan[jackson.ryan@epa.gov] CyberSecurity & the Executive Order Workshop II Wed 9/27/2017 5:33:00 PM [SPAM] Register for: Latest on Gov Cybersecurity & Cyber EO Workshop Please Review and Forward to Your Government Executives, Managers and Staff Who Play a Part in Agency Cyber Security Management or Implementation - CIOs, CISOs, IGs, Program Managers Potomac Forum Training Workshop Latest in Cybersecurity & Implementing the President's Cybersecurity Executive Order (EO) Training Workshop "How To" Workshop to Implement the Requirements of the EO and its Reporting Requirements Date: Wednesday, November 15, 2017 Sponsored by: Potomac Forum, Ltd. the leader in high quality training since 1984 www.PotomacForum.org (703) 683-1613 info@PotomacForum.org Location of Workshop: Willard InterContinental Hotel Washington, D.C. Potomac Forum Training Workshops are 100% Educational 17cv1906 Sierra Club v. EPA ED_O01523_00001384-00001 Workshop for Government & Industry Partners Press is Not Permitted to Encourage Candid Discussion in our Learning Envi ronment Government Speakers: Keynote: The Cybersecurity Executive Order: Building the Next Generation Risk Management Framework and Controls Dr. Ron Ross NIST Fellow Author of the NIST Risk Management Framework (RMF) and Numerous NIST Cyber Security Publications (Latest Info on Cyber Security Framework, Security Controls and the Risk Management Framework) Dr. Barry C. West Senior Advisor to DHS CIO Senior Accountable Official for Risk Management Department of Homeland Security (DHS) (Awaiting Agency Approval) Martin Stanley Chief, Cybersecurity Branch National Protections and Programs Directorate (NPPD) Department of Homeland Security (DHS) Ricci L. Mulligan Acting Principal Deputy Assistant Secretary Office of Information and Technology Department of Veterans Affairs (VA) Kirit Amin Chief Information Officer (CIO) International Trade Commission (USITC) Jaime Noble, CAP, CISSP Deputy Director for IT Security & 17cv1906 Sierra Club v. EPA ED_001523_00001384-00002 Department of Justice Additional Government Speakers are being approved for participation by their Agencies Potomac Forum Workshops are 100% educational programs and not sales or marketing events! Overview: This workshop will focus on the President's EO on Cybersecurity and discuss its requirements. A key requirement is the implementation of NIST's Cybersecurity Framework (CSF). We will present an understanding of the CSF and NIST's Risk Management Framework (RMF) which is a key component of the CSF. The CSF and RMF are critical for the federal government in its efforts to mitigate risk within enterprise information systems. The workshop will provide detailed guidance on the integration of the CSF and RMF into a holistic Cybersecurity solution. In addition, the workshop will address the EO reporting requirements for the first 90-day report and the other reports identified in the EO. Hear from industry experts and government officials tasked with implementing robust cybersecurity and risk management strategies along with learning how NIST's CSF and RMF can be effectively implemented to reduce the risk of cyber attacks. Listen to a government panel of CIOs and CISOs to understand the challenges they are facing on a day-to-day basis and how implementation of NIST's CSF and RMF helps them identify the risks and what it takes to mitigate those risks. Gaining insights from the panel and peer interactions at the workshop should be invaluable in implementing the President's EO and moving the needle forward in improving federal cybersecurity. What You Will Learn: The approach used by the NIST RMF The value of the integration of the NIST RMF with the NIST CSF Development of agency Risk Management Strategies Changes in federal information system authorization requirements and guidelines Guidance into what agencies can expect from the NIST RMF and new CSF processes Importance of Risk Assessments (RA), Security Control Assessments (SCA), and Security Testing & Evaluation (ST&E) Security control categorization and how it is used to manage risk NIST SP 800-53A, Guide for Assessing the Security Controls in Federal Information Systems and Organizations: Building Effective Security Assessment Plans; NIST SP 800-37 Rev. 1 17cv1906 Sierra Club v. EPA ED_001523_00001384-00003 ^^^uiS^o^ppIyTn^n^TTsI^anagemen^^mewoH^^^Sem^" Information Systems: A Security Life Cycle Approach and NIST SP 800-39 Managing Information Security Risk Reporting Requirements for the Executive Order Best Practices for Responding to the Executive Order Why You Should Attend Review the key steps within the NIST RMF and CSF Obtain practical knowledge of how NIST RMF and CSF are incorporated into information system security Gain insight into conducting and implementing NIST RMF and CSF in your organization Collect information on how NIST frameworks can be leveraged to enhance the security of your organization Learn how risk management and cybersecurity are essential for regulatory compliance Learn from risk management, security and OIG colleagues in Federal, State and Local Governments Learn how other Agencies are responding to the EO Who Should Attend: CIOs, CISOs and Staff ' IT security and risk management practitioners ' IGs and Staff ' Program Managers responsible for risk management ' Government Employees who want to better understand organization risk management ' Executives who oversee risk management for the government ' All government executives, managers and staff who need to better understand risk management and implementing the President's Executive Order CEUs Awarded Upon Workshop Completion Potomac Forum is an Authorized Provider of ICS(2) Credits Press is NOT Invited to Register or Attend "Early Bird" Reduced Registration Until October 15, 2017 17cv1906 Sierra Club v. EPA ED_001523_00001384-00004 ^^RTrl^nr3'n3c^gsrrTOnrocoBn5^B^^^" "Send-A-Team" Registration Fees No Press to Promote Candid Discussion Registration and Information: www.potomacforum.org Call: (703) 683-1613 lnfo@PotomacForum.org Sponsored by: Potomac Forum, Ltd. Providing High Quality Training to the Government Since 1982 Potomac Forum, Ltd. is a proud Corporate Partner of The Association of Government Accountants Proud Sustaining Partner AFFIRM Association for Federal Information Resources Management Please do not Unsubscribe from this "Government Cyber Security" Training Workshop" Email List Potomac Forum educational programs address major government management initiatives. While this Workshop may not be of interest to you, other Potomac Forum programs may be of great interest and value to you and your organization. If you do Unsubscribe, you will be removed from the "Government Cyber Security" Training Workshop Email List. Thank You. This email was sent to: jackson.ryan@epa.gov Go here to leave this mailing list or modify your email profile. We respect your right to privacy. View our policy. This email was sent by: Potomac Forum, Ltd. 400 North Washington Street , Alexandria , Virginia, 22314 , USA 17cv1906 Sierra Club v. EPA ED_O01523_00001384-00005