Cyber Resilience Summit: Securing Systems inside the Perimeter

Cyber Resilience Summit: Securing Systems inside the Perimeter

Cyber Resilience Summit: Securing Systems inside the Perimeter

 

 Topic: Improving System Development and Sustainment Outcomes with Software Quality and Risk Measurement Standards

Hosted by: Consortium for IT Software Quality (CISQ) in cooperation with Object Management Group (OMG) and IT Acquisition Advisory Council (IT-AAC)

Date: Tuesday, March 21, 2017, 8:00am – 12:30pm

Location: Hyatt Reston Town Center, 1800 Presidents Street, Reston, VA 20190

RSVP: The event is sold out! Tracie Berardi tracie.berardi@it-cisq.org or 781-444-1132 x 149

As the journey to secure our nation’s IT cyber infrastructure gains momentum, it is important to apply proven standards and methodologies that reduce risk and help us meet objectives for acquiring, developing and sustaining secure and reliable software-intensive systems. The theme of the March Cyber Resilience Summit is Securing Systems inside the Perimeter. Defending the network is NOT enough. The most damaging of system failures and security breaches are caused by vulnerabilities lurking inside the network at the application layer.

The discussion focused on meeting assurance-driven objectives, digital transformation, and cyber risk measurement at scale. We’ll discuss risk-managed evolution and practical application of systems engineering to support cloud readiness, big data, technical debt control and risk management of complex mission, C2, weapon and citizen-facing systems. 300 attendees registered from the White House, OMB, DoD, DHS, NSA and several Federal agencies.

DOWNLOADS PRESENTATIONS

Visit CISQ Members Area, “Event and Seminar Presentations,” or click links in agenda below.

 Request an On-site Meeting, Lunch Briefing or Speakers

Over 1,000 people have attended the Cyber Resilience Summit series. Education on these topics is critical if we are to effectively manage these risks in Public Sector acquisition and IT program management. We’re can bring Cyber Resilience best practices to your site or event.

PROGRAM AGENDA

Emcee: Don Davidson, Chief, Lifecycle Risk Management & Cybersecurity/Acquisition, U.S. Department of Defense

Time Session
7:45am Registration Desk and Refreshments
8:00am Welcome to the Cyber Resilience Summit
– Dr. Bill Curtis, Executive Director, Consortium for IT Software Quality (CISQ)
– John Weiler, Vice Chair, IT Acquisition Advisory Council (IT-AAC)
– Marc Jones, Director of Public Sector Outreach, Consortium for IT Software Quality (CISQ)
– Don Davidson, Chief, Lifecycle Risk Management & Cybersecurity/Acquisition, U.S. Department of Defense
8:20am Keynote: What’s Holding Us Back? – Maj Gen Dale Meyerrose (Download presentation PDF)
Dr. Dale Meyerrose, Major General, U.S. Air Force retired, was the first President appointed, Senate-confirmed chief information officer and information sharing executive for the U.S. Intelligence Community.
8:50am Advances in Measuring the Security and Architectural Integrity of Mission-Critical Systems (Download presentation PDF)
Dr. Bill Curtis, Executive Director, Consortium for IT Software Quality (CISQ)
9:20am Modernizing and Securing Legacy IT Systems
A review of the Presidential Executive Order for Cyber Security and Modernizing Government Technology Act (Meeting Handout)
Lead: John Weiler, Vice Chair, IT Acquisition Advisory Council (IT-AAC)

Speakers:
– Dr. Mitch Crosswait, Deputy Director, Net Centric and Missile Defense Systems, Operational Test and Evaluation, U.S. Department of Defense
– Dr. J. Brian Hall, Acting Deputy Assistant Secretary of Defense for Developmental Test and Evaluation
– Dave Epperson, CIO of NPPD, U.S. Department of Homeland Security
– Jason Hess, Chief, Cloud Security, Office of the Chief Information Officer (OCIO), National Geospatial-Intelligence Agency
– David McKeown, GS-15, CISSP, Chief, Cyber Security Center, Joint Service Provider, DISA
– Tony Davis, Acting Command Acquisition Executive, USCYBERCOM
10:00am Refreshment Break
10:15am Remarks from Dr. Ben Calloni, co-chair of the OMG’s Systems Assurance Task Force
10:30am Titans of Cyber: Critical Insights from the Front Lines of the Cyber Risk Management Battle

Lead: Don Davidson, Chief, Lifecycle Risk Management & Cybersecurity Acquisition, U.S. Department of Defense

 

Titans of Cyber speakers:

– Sonny Bhagowalia, CIO, U.S. Department of the Treasury
– Dr. Ray Letteer, Chief, Cyber Security Division, U.S. Marine Corps
– Dr. Ron Ross, Fellow, National Institute of Standards and Technology (NIST)
– Rod Turk, Acting CIO, U.S. Department of Commerce
– Danny Toler, Deputy Assistant Secretary, CS&C, NPPD, U.S. Department of Homeland Security (US CERT website)

11:30am Use Case: Putting CISQ Standards into Action at Agile Speed
Barry Snyder, DevOps Manager, AD&M Development Services, Fannie Mae
12:00pm The Value of Security Benchmarks and Controls (Download presentation PDF)
Curtis Dukes, Executive Vice President, Center for Internet Security
12:30pm Closing Remarks

THIS EVENT IS SOLD OUT!

SPONSORS

CISQ-event-sponsors-2017

SUPPORTING PARTNERS

ADCEA-DC-17     CIS-logo owasp_logo

PHOTOS

Marc-Jones-John-Weiler-CISQ-Intro-3-21-17
Marc Jones, CISQ’s Director of Public Sector Outreach, welcomes attendees to the Cyber Resilience Summit and introduces emcee, Don Davidson (DoD).

Dale-Meyerrose-CISQ-Resilience-Keynote-3-21-17

Keynote speaker, Dr. Dale Meyerrose, Major General, U.S. Air Force retired, presents What’s Holding Us Back?

Bill-Curtis-CISQ-3-21-17

Dr. Bill Curtis, CISQ’s Executive Director, presents Advances in Measuring the Security and Architectural Integrity of Mission-Critical Systems.

John-Weiler-Modernizing-Securing-Legacy-IT-Panel-CISQ-3-21-17

John Weiler, IT-AAC Vice Chair, leads the power panel, Modernizing and Securing Legacy IT, with (L-R) Jason Hess (NGA), Tony Davis (USCYBERCOM), David McKeown (DISA), Dr. Mitch Crosswait (DoD), Dr. J. Brian Hall (DoD).

Don-Davidson-CISQ-Titans-of-Cyber-Panel-3-21-17

Cyber Resilience Summit emcee, Don Davidson (DoD), leads the Titans of Cyber panel with (L-R) Dr. Ray Letteer (USMC), Dr. Barry Horowitz (UVA), Danny Toler (DHS NPPD), and Rod Turk (Commerce)

Barry-Snyder-Fannie-Mae-CISQCurt-Dukes-CISQ

Barry Snyder, DevOps Manager at Fannie Mae, presents Putting CISQ Standards into Action at Agile Speed.

Curtis Dukes, EVP of the Center for Internet Security, presents The Value of Security Benchmarks and Controls.

CISQ-Cyber-Resilience-Summit-Crowd-3-21-17

The Cyber Resilience Summit sold out! Thank you for participating in this important discussion.