Conference

Cloud Identity Summit 2017

Monday, June 19, 2017 to Thursday, June 22, 2017

NCCoE security engineer Bill Fisher will be presenting a session on current and upcoming NCCoE projects on June 19 from 9am to 12pm at the Cloud Identity Summit. NCCoE security engineer Christopher Brown will present a deeper dive on the NCCoE's Derived PIV Credentials project, time TBA. The summit brings together the best of industry and enterprise presenters and experts to share insights and to synthesize new ideas. The summit will be held from June 19-22 at the Sheraton Grand Chicago in Chicago, Il.

The Future of Cyber Security: Spotlight on Oil and Gas

Thursday, February 16, 2017

This one-day conference will discuss the current and projected cyber threat landscape facing this industry and the myriad challenges oil and gas companies must overcome to protect themselves. NCCoE Project Engineer Julie Snyder will lead the conversation "Understanding the Cyber Challenge" at 9:30am CT at the Four Seasons Hotel in Houston, TX. Featuring oil and gas leaders, this conversation will cover innovative technology trends being adopted by the oil industry and the potential risks they pose to the security of oil networks and infrastructure, and provide insights into how risk is driving industry decision-making and how companies are responding to the need to defend their systems. 

RSA Conference 2017

Monday, February 13, 2017 to Friday, February 17, 2017

The NCCoE will be participating with NIST at the RSA Conference 2017 at the Moscone Center in San Francisco.

Exhibition Booth and Demonstrations

Visit us at the NIST Booth in Moscone South #2815. Check out our live demos at the booth:

NCCoE will present a demo on its Derived PIV Credentials project at the Entrust Datacard booth in Moscone North #4201, Tuesday, February 14 from 4:30-5pm.

NCCoE will present a demo on its Financial Services projects, "Strengthening Cybersecurity with NIST Standards-Based Solution" at the Splunk booth in Moscone North #3421 on Wednesday, February 15 from 2:30-3:00pm. 

 

ISSA Mid-Atlantic Information Security Conference

Friday, March 10, 2017

NCCoE cybersecurity engineers Jim Banoczi and Harry Perper will present "Managing Access and Assets for the Financial Services Industry" at the ISSA Mid-Atlantic Information Security Conference on March 10, 2017 at 9:40am at Universities at Shady Grove Conference Center in Rockville, Md. The financial industry is faced with many pressing cybersecurity challenges, including how to manage IT assets and access rights. This session will provide an overview of the NCCoE and describe two projects that the financial industry has identified as significant challenges. The first project, IT Asset Management, outlines a practical solution for identifying and managing IT assets within an organization. The second, Access Rights Management, addresses how to integrate diverse identity and access management platforms to better control access rights. These projects were initiated through discussions with members of the financial services and have broad applicability across the financial sector.

Federal IT Acquisition Summit

Wednesday, November 16, 2016

The Federal IT Acquisition Summit held in Washington, DC provides acquisition and management professionals with insights into key trends and developments in federal IT. NCCoE Senior Security Engineer Don Tobin will participate on the Cybersecurity Framework Panel from 10:15am to 11:05am. This panel will look at new ways in which agencies are leveraging the NIST Cybersecurity Framework to solve pressing security problems.

HIMSS Annual Conference & Exhibition

Sunday, February 19, 2017 to Thursday, February 23, 2017

The NCCoE is attending the 2017 Healthcare Information and Management Systems Society (HIMSS) Annual Conference & Exhibition in Orlando, Fl at the Orange County Convention Center.

Presentations

Cybersecurity Discussion: Securing PACS with NCCoE Computer Scientist Gavin O'Brien and MITRE Principal Cybersecurity Researcher Kevin Littlefield
Tuesday, February 21, 11:30am-12pm, Hall A, Booth 230
We will facilitate a discussion on potential cybersecurity risks that may be unique to Picture Archiving and Communication Systems (PACS), including analyzing the Digital Imaging and Communications in Medicine (DICOM) standard. We hope to also explore potential practical measures to mitigate those risks.

Securing Wireless Medical Infusion Pumps - A Use Case with NCCoE Computer Scientist Gavin O'Brien
Wednesday, February 22, 10am-11am, Tangerine Ballroom F4
This presentation demonstrates how to secure medical devices in a health provider’s enterprise network. The use case, developed in collaboration with health IT vendors at the NCCoE, covers identifying the actors interacting with infusion pumps, defining the interactions between the actors and the system, performing a risk assessment, categorizing the challenges facing successful management of medical device cybersecurity, and reviewing applicable mitigating security technologies. The outcome is a repeatable, scalable example implementation solution. Once healthcare organizations understand today’s available technologies, they can set strategies to prioritize vulnerabilities, obtain these technologies for use within their organization, educate staff, and most significantly, mitigate cybersecurity risk to patients.

YourTurn: Cybersecurity Challenges in Health Care with NCCoE Computer Scientist Gavin O'Brien
Wednesday, February 22, 1pm-2pm, Room W300 
With the support of healthcare organizations, the NCCoE at NIST, demonstrated how enterprises can secure electronic health records on mobile devices to better protect patient data. Our next project showed health organizations how to better secure wireless infusion pumps to reduce patient safety & security risks. This talk gives attendees the opportunity to discuss best practices, prioritize challenges & explore potential solutions, ultimately guiding the NCCoE on its next projects.

Exhibition Booth

Federal Health IT Solutions Pavilion Hall A, Booth #230, sponsored by The MITRE Corporation.

2016 Investment Company Institute Cybersecurity Forum

Wednesday, November 9, 2016

With industries relying more on information technology, cybercrime is becoming ever more prevalent—and the investment fund industry is not immune.

To better understand the evolving nature of cyberthreats, the Investment Company Institute will be hosting its the third annual Cybersecurity Forum on Thursday, November 10, at Washington Marriott Georgetown. The NCCoE Financial Services team will be attending and sharing more information about its Financial Services projects. 

Safeguarding Health Information: Building Assurance through HIPAA Security

Tuesday, October 18, 2016 to Wednesday, October 19, 2016

NIST and the Department of Health and Human Services' Office for Civil Rights will co-host the 9th annual  Safeguarding Health Information: Building Assurance through HIPAA Security Conference on October 19-20, 2016 at the Capital Hilton, Washington, D.C. NCCoE computer scientist Gavin O'Brien will host a panel on "Addressing Healthcare Cybersecurity Challenges through Standards-based Solutions" on October 19 from 1:15pm-2:15pm.