federal computer security managers forum meeting
play

Federal Computer Security Managers Forum Meeting September 10, 2018 - PowerPoint PPT Presentation

Dec 15, 2023 •538 likes •664 views

Federal Computer Security Managers Forum Meeting September 10, 2018 NIST Gaithersburg NIST Heritage Room NIST Building 101 Ground Floor Map FCSM Quarterly Meeting Overview| 2 NIST Building 101 Ground Floor Map Stairs to Outside and

  1. Federal Computer Security Managers’ Forum Meeting September 10, 2018 NIST Gaithersburg NIST Heritage Room

  2. NIST Building 101 Ground Floor Map FCSM Quarterly Meeting Overview| 2

  3. NIST Building 101 Ground Floor Map Stairs to Outside and Basement Shelter in Place Turnstile West Square Heritage Room FCSM Quarterly Meeting Overview| 3

  4. NIST-Guest Wireless Network NIST-Guest is broadcasted; Use this network to connect • your device. 1. Connect wirelessly to SSID: NIST-Guest 2. Open your browser, as needed. 3. If using iOS (iPhones and iPads), access a web page that does not use https:// to get to the Access and Use Policy. 4. If using Android devices, a web page will automatically open with the Access and Use Policy. Review the complete Access and Use Policy by scrolling to the bottom of the • Window. Acknowledge that you agree to the terms identified by selecting ACCEPT. Device access will be blocked if (1) it is a NIST-owned device; (2) malware or • other malicious activity is detected; or (3) inappropriate online behavior is detected. For more information, see: https://www.nist.gov/sites/default/files/documents/2016/11/08/AboutAccess.pdf FCSM Quarterly Meeting Overview| 4

  5. FCSM Quarterly Meeting Agenda Time Agenda Item Presenter 9:00 a.m. Welcome and Announcements Jody Jacobs, FCSM Co-Chairperson (NIST) Federal Information Security Modernization Act Charles Cutshall, Office of Management 9:20 a.m. (FISMA) Senior Agency Official for Privacy (SAOP) and Budget (OMB) Metrics 10:20 a.m. Break Kelley Dempsey (NIST); Lisa Barr, 10:40 a.m. Overview of Ongoing Authorization Department of Homeland Security (DHS) 11:30 a.m. ADJOURN FORUM MEETING FCSM Quarterly Meeting Overview| 5

  6. NIST Update • NIST FISMA Publication Schedule • Additional Publications Pending Update/In Development • Rescinded NIST SPs • Save the Date: FY19 Meetings, Workshops, and Conferences FCSM Quarterly Meeting Overview| 6

  7. NIST FISMA Publication Schedule Current proposed schedule as of August 6, 2018 . This is the current proposed schedule by NIST, it is subject to approval by the Office of Management and Budget; it may be subject to change. Any updates to the schedule will be posted at: https://csrc.nist.gov/Projects/Risk- Management/Schedule • NIST Special Publication 800-37, Revision 2, Risk Management Framework for Security and Privacy – Final Public Draft: September 2018 – Final Publication: November 2018 • NIST Special Publication 800-53, Revision 5, Security and Privacy Controls – Final Public Draft: December 2018 – Final Publication: March 2019 • NIST Special Publication 800-53A, Revision 5, Assessment Procedures for Security and Privacy Controls – Initial Public Draft: June 2019 – Final Public Draft: September 2019 – Final Publication: December 2019 FCSM Quarterly Meeting Overview| 7

  8. NIST FISMA Publication Schedule (cont) Current proposed schedule as of August 6, 2018 . This is the current proposed schedule by NIST, it is subject to approval by the Office of Management and Budget; it may be subject to change. Any updates to the schedule will be posted at: https://csrc.nist.gov/Projects/Risk- Management/Schedule • FIPS Publication 200, Revision 1, Minimum Security Requirements – Initial Public Draft: TBD pending Request for Information (RFI) Final Public Draft: TBD pending RFI – – Final Publication: TBD pending RFI • FIPS Publication 199, Revision 1, Security Categorization – Initial Public Draft: TBD pending RFI – Final Public Draft: TBD pending RFI – Final Publication: TBD pending RFI • Questions or comments can be submitted to: sec-cert@nist.gov. FCSM Quarterly Meeting Overview| 8

  9. Additional Publications Pending Update/ In Development/Initial Public Draft* NIST SP 800-47, Rev. 1, NIST SP 800-60, Rev. 2, NIST SP 800-18, Rev. 2, NIST SP 800-53B, Security Security Guide for Guide for Mapping Types of Guide for Developing and Privacy Control Interconnections and Information and Systems to Security Plans Baselines Information Exchange Security Categories NIST SP 800-137A, NISTIR 8212, Information NISTIR 8011, Automation Assessment Procedures Security Continuous NIST SP 800-160, Systems Support for Security Control for Information Security Monitoring Assessment Security Engineering** Assessments** Continuous Monitoring Tool NISTIR 8170, The SP 800-53 Online Control Cybersecurity Framework: Application and Implementation Guide for Repository Federal Agencies * Publication titles are subject to change; publication timeframe will depend on available resources ** Multiple volumes planned FCSM Quarterly Meeting Overview| 9

  10. NIST Rescinded Publications • After performing an internal review of some of its older publications, NIST’s Computer Security Division has decided to withdraw eleven (11) SP 800 publications on August 1, 2018 . These publications are out of date and will not be revised or superseded. • After they are withdrawn, their details pages, Digital Object Identifiers (DOIs) and full text PDF links will remain available for historical reference under CSRC publications, with their status changing from “Final” to “Withdrawn.” – SP 800-13 (October 1995), Telecommunications Security Guidelines for Telecommunications Management Network – SP 800-17 (February 1998), Modes of Operation Validation System (MOVS): Requirements and Procedures: – SP 800-19 (October 1999), Mobile Agent Security – SP 800-23 (August 2000), Guidelines to Federal Organizations on Security Assurance and Acquisition/Use of Tested/Evaluated Products – SP 800-24 (April 2001), PBX Vulnerability Analysis: Finding Holes in Your PBX Before Someone Else Does: – SP 800-33 (December 2001), Underlying Technical Models for Information Technology Security – SP 800-36 (October 2003), Guide to Selecting Information Technology Security Products – SP 800-43 (November 2002), Systems Administration Guidance for Securing Windows 2000 Professional System: SP 800-65 (January 2005), Integrating IT Security into the Capital Planning and Investment Control Process – – SP 800-68 Rev. 1 (October 2008), Guide to Securing Microsoft Windows XP Systems for IT Professionals: A NIST Security Configuration Checklist – SP 800-69 (September 2006), Guidance for Securing Microsoft Windows XP Home Edition: A NIST Security Configuration Checklist FCSM Quarterly Meeting Overview| 10

  11. Upcoming Meetings, Workshops and Conferences – Save the Date! • Ongoing: Request Input for FCSM Topics and Speakers! – Send to sec-forum@nist.gov • Next FCSM Quarterly Meeting – November 28, 2018 @ NIST Gaithersburg, Heritage Room Controlled Unclassified Information Security Requirements Workshop • – October 18, 2018 @ NIST Gaithersburg, Red Auditorium • To register and get more information: https://go.usa.gov/xU5s2 NIST Cybersecurity Risk Management Conference • – November 7-9, 2018 Baltimore, Maryland – To register https://go.usa.gov/xUFuS **Please note there is a registration fee for this conference** For more information: https://csrc.nist.gov/Projects/Forum FCSM Quarterly Meeting Overview| 11

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Federal Computer Security Managers Forum Quarterly Meeting October 28, 2020 Administrative

Federal Computer Security Managers Forum Quarterly Meeting October 28, 2020 Administrative

Federal Computer Security Managers Forum Quarterly Meeting October 28, 2020 Administrative Reminders This meeting is NOT recorded. Slides will be available within 7 business days, with speaker permission. CEU Form is available:

624 views • 9 slides
Federal Computer Security Managers Forum Quarterly Meeting November 2, 2017 National

Federal Computer Security Managers Forum Quarterly Meeting November 2, 2017 National

Federal Computer Security Managers Forum Quarterly Meeting November 2, 2017 National Cybersecurity Center of Excellence Safety/Evacuation Evacuation Emergencies What Will Happen During an Evacuation Event? A building-wide alarm will

259 views • 12 slides
FEDERAL COMPUTER SECURITY MANAGERS FORUM MEETING FEBRUARY 6, 2020 NIST WEST SQUARE NIST

FEDERAL COMPUTER SECURITY MANAGERS FORUM MEETING FEBRUARY 6, 2020 NIST WEST SQUARE NIST

FEDERAL COMPUTER SECURITY MANAGERS FORUM MEETING FEBRUARY 6, 2020 NIST WEST SQUARE NIST GAITHERSBURG NIST Building 101 Ground Floor Map FCSM Quarterly Meeting Overview| 2 FCSM Quarterly Meeting Overview| 2 NIST-Guest Wireless Network

612 views • 14 slides
Federal Cybersecurity Workforce Federal Computer Security Managers Forum February 14, 2017 1

Federal Cybersecurity Workforce Federal Computer Security Managers Forum February 14, 2017 1

Federal Cybersecurity Workforce Federal Computer Security Managers Forum February 14, 2017 1 2/16/17 Presentation Outline I. New Cybersecurity Codes II. CyberCareers.gov 2/16/17 2 Background on Cybersecurity Codes 2013: Began identifying and

464 views • 14 slides
SaaS Email Working Group John Connor, Rathini Vijayaverl IT Security Specialists, OISM, NIST

SaaS Email Working Group John Connor, Rathini Vijayaverl IT Security Specialists, OISM, NIST

Google Groups Assessment a and Authorization Lessons L Learn rned SaaS Email Working Group John Connor, Rathini Vijayaverl IT Security Specialists, OISM, NIST Meeting February 13, 2018 Federal Computer Security Managers Forum Meeting

548 views • 28 slides
NIST Combinatorial Testing project Goals reduce testing cost, improve cost-benefit ratio

NIST Combinatorial Testing project Goals reduce testing cost, improve cost-benefit ratio

Combinatorial Methods in Software Testing Rick Kuhn National Institute of Standards and Technology Gaithersburg, MD Federal Computer Security Managers Forum, Dec. 6, 2011 NIST Combinatorial Testing project Goals reduce testing cost,

491 views • 46 slides
Association of Arctic Expedition Cruise Operators Station Managers Forum Melissa Nacke

Association of Arctic Expedition Cruise Operators Station Managers Forum Melissa Nacke

STATION MANAGERS FORUM , SWEDEN Association of Arctic Expedition Cruise Operators Station Managers Forum Melissa Nacke AECO.NO STATION MANAGERS FORUM , SWEDEN Who are we? 70+ international members and represents the majority of

453 views • 17 slides
Subnet Managers May 19, 2010 Are we there yet? Agenda Items Security Campus IT Update

Subnet Managers May 19, 2010 Are we there yet? Agenda Items Security Campus IT Update

Subnet Managers May 19, 2010 Are we there yet? Agenda Items Security Campus IT Update Exchange 2010 Middleware 5/19/2010 Agenda (cont) Licensing/Student computer standards Network Operations 5/19/2010 Security

770 views • 40 slides
Sermilik Station, Southeast Greenland INTERACT II, Station Managers' Forum V, Svartberget, Sweden,

Sermilik Station, Southeast Greenland INTERACT II, Station Managers' Forum V, Svartberget, Sweden,

By Morten Rasch and Wolfgang Schner Station Managers Forum Sermilik Station, Southeast Greenland INTERACT II, Station Managers' Forum V, Svartberget, Sweden, 10-11 September 2019 1 Facts about the station: Location: Sermilik Fjord,

459 views • 13 slides
Managers Briefing Welcome Purna Patel 20 th May 2020 School Business Managers Forum Shereen

Managers Briefing Welcome Purna Patel 20 th May 2020 School Business Managers Forum Shereen

School Business Managers Briefing Welcome Purna Patel 20 th May 2020 School Business Managers Forum Shereen Moussa Southwark Schools HR Update 20 th May 2020 COVID-19: The situation so far From 23 rd March 2020, the Government

936 views • 64 slides
Introduction to Computer Security Rev. Sept 2015 What is Computer Security? 2 Computer

Introduction to Computer Security Rev. Sept 2015 What is Computer Security? 2 Computer

Introduction to Computer Security Rev. Sept 2015 What is Computer Security? 2 Computer Security is the protection of computing systems and the data that they store or access 3 Why is Computer Security Important? Computer Security allows

690 views • 19 slides
INTERACT GIS Task 3.6 of the INTERACT Station Managers Forum Introduction to INTERACT GIS

INTERACT GIS Task 3.6 of the INTERACT Station Managers Forum Introduction to INTERACT GIS

INTERACT GIS Task 3.6 of the INTERACT Station Managers Forum Introduction to INTERACT GIS Workshop The current INTERACT GIS team: Britta Lfvenberg: IT-leader at ICT Services and System Development, Ume University, Sweden (UmU ITS) Per

457 views • 13 slides
Check against delivery 6 th ASEAN REGIONAL FORUM INTERSESSIONAL MEETING ON MARITIME SECURITY,

Check against delivery 6 th ASEAN REGIONAL FORUM INTERSESSIONAL MEETING ON MARITIME SECURITY,

Check against delivery 6 th ASEAN REGIONAL FORUM INTERSESSIONAL MEETING ON MARITIME SECURITY, BALI, INDONESIA, 22-23 MAY 2014 STATEMENT BY MALAYSIA ON MH370 SEARCH OPERATIONS UNDER AGENDA ITEM 8 MARITIME SEARCH AND RESCUE Mr Co-Chair, Thank

366 views • 3 slides
EARCOS BUSINESS MANAGERS WEBINAR MEETING Purpose To provide a time for EARCOS Business Managers

EARCOS BUSINESS MANAGERS WEBINAR MEETING Purpose To provide a time for EARCOS Business Managers

EARCOS BUSINESS MANAGERS WEBINAR MEETING Purpose To provide a time for EARCOS Business Managers to reconnect To share challenges, information and ideas related to the impact of COVID 19 on Business Operations Opportunity to ask

576 views • 21 slides
SP 800-16 Rev 1 (3 rd Draft) A Role-Based Model for Federal Information Technology/Cyber Security

SP 800-16 Rev 1 (3 rd Draft) A Role-Based Model for Federal Information Technology/Cyber Security

SP 800-16 Rev 1 (3 rd Draft) A Role-Based Model for Federal Information Technology/Cyber Security Training FISSEA Conference March 19, 2014 Pat Toth Penny Klein Computer Security Division Systegra Information Technology Laboratory NATIONAL

750 views • 40 slides
Quick Intro to Computer Security What is computer security? Securing communication

Quick Intro to Computer Security What is computer security? Securing communication

Carnegie Mellon Quick Intro to Computer Security What is computer security? Securing communication Cryptographic tools Access control User authentication Computer security and usability Thanks to Mike Reiter for the

412 views • 38 slides
Update Isaac Janak C OMMONWEALTH OF V IRGINIA 1 O FFICE OF THE S ECRETARY P UBLIC S AFETY & H

Update Isaac Janak C OMMONWEALTH OF V IRGINIA 1 O FFICE OF THE S ECRETARY P UBLIC S AFETY & H

O FFICE OF THE S ECRETARY O FFICE OF THE S ECRETARY P UBLIC S AFETY & H OMELAND S ECURITY P UBLIC S AFETY & H OMELAND S ECURITY Virginia Cyber Security Commission Update Isaac Janak C OMMONWEALTH OF V IRGINIA 1 O FFICE OF THE S ECRETARY

295 views • 7 slides
State of Arkansas Basic Health Plan Considerations www.pcghealth.com Agenda | T opics of

State of Arkansas Basic Health Plan Considerations www.pcghealth.com Agenda | T opics of

State of Arkansas Basic Health Plan Considerations www.pcghealth.com Agenda | T opics of Discussion Basic Health Plan A. Who is Eligible B. How is it Financed? C. Covered Services D. Advantages and Disadvantages 2 Who Is Eligible?

522 views • 30 slides
Results AASHTO GIS-T 2018 Symposium Little Rock, AK March 19-22, 2018 David Loukes, P.Eng.

Results AASHTO GIS-T 2018 Symposium Little Rock, AK March 19-22, 2018 David Loukes, P.Eng.

T RANSPORTATION A SSOCIATION OF C ANADA (TAC) A SSOCIATION DESTRANSPORTS DU C ANADA ( L ATC ) Canadian GIS-T Survey 2017 Results AASHTO GIS-T 2018 Symposium Little Rock, AK March 19-22, 2018 David Loukes, P.Eng. Presentation Outline

479 views • 19 slides
Voluntary Information-Sharing System (VIS) Working Group Dr. Christie Murray Director of

Voluntary Information-Sharing System (VIS) Working Group Dr. Christie Murray Director of

Voluntary Information-Sharing System (VIS) Working Group Dr. Christie Murray Director of Outreach and Engagement October 19, 2018 1 Purpose Protecting our Infrastructure of Pipelines and Enhancing Safety (PIPES) Act of 2016 (Sec 10):

353 views • 21 slides
New England HIMSS MA HIway Update Agenda 1. Introduction to the Mass HIway 2. HIway 2.0

New England HIMSS MA HIway Update Agenda 1. Introduction to the Mass HIway 2. HIway 2.0

10/9/2018 Commonwealth of Massachusetts Executive Office of Health and Human Services New England HIMSS MA HIway Update Agenda 1. Introduction to the Mass HIway 2. HIway 2.0 Migration Overview and Update 3. Mass HIway Regulations Update 4.

531 views • 15 slides
Blueprint Integrated Pilot Programs Community Activation & Prevention Academy Health

Blueprint Integrated Pilot Programs Community Activation & Prevention Academy Health

Blueprint Integrated Pilot Programs Community Activation & Prevention Academy Health Coordinating State Health Reform November 20 21, 2008 Craig Jones MD Craig.jones@state.vt.us Improve Quality Health Care Reform Goals Contain Costs

377 views • 13 slides
Delaware Afterschool Network 1 Delaware Afterschool Network This is Afterschool

Delaware Afterschool Network 1 Delaware Afterschool Network This is Afterschool

Delaware Afterschool Network 1 Delaware Afterschool Network This is Afterschool https://youtu.be/8cjpdyB_QLc 2 Delaware Afterschool Network Did You Know The lack of federal, state, and local funding, and families and communities

182 views • 17 slides
Council February 11, 2013 prepared by 1 Considerations for 2040 LRTP Update Purpose of the

Council February 11, 2013 prepared by 1 Considerations for 2040 LRTP Update Purpose of the

2040 Long Range Transportation Plan (LRTP): Compliance with Federal and State Requirements Presentation to the Transportation Planning Council February 11, 2013 prepared by 1 Considerations for 2040 LRTP Update Purpose of the Study What

477 views • 19 slides

More recommend