The NCCoE will be hosting a conference call for individuals from industry, academy, and government interested in identifying mobile security challenges, providing practical mobile security expertise, and helping guide NCCoE mobile security projects.
Insider threats are growing at an alarming rate, with medium-to-large company losses averaging over $4 million every year. Smaller businesses are at risk too, and it is estimated that in 2014, over half of all cyber attacks targeted companies with less than 1,000 employees. The majority of these breaches are caused accidentally by internal employees or contractors.
NIST cybersecurity engineers Scott Rose and Curt Barker will discuss the NCCoE DNS-Based Email Security project at an Online Trust Alliance (OTA) webinar on Tuesday, November 29. Microsoft Corp, a partner in the NCCoE project, invited the NCCoE to this presentation. This webinar is part of the OTA’s monthly cybersecurity presentation series.
The Federal IT Acquisition Summit held in Washington, DC provides acquisition and management professionals with insights into key trends and developments in federal IT. NCCoE Senior Security Engineer Don Tobin will participate on the Cybersecurity Framework Panel from 10:15am to 11:05am. This panel will look at new ways in which agencies are leveraging the NIST Cybersecurity Framework to solve pressing security problems.
With industries relying more on information technology, cybercrime is becoming ever more prevalent—and the investment fund industry is not immune.
To better understand the evolving nature of cyberthreats, the Investment Company Institute will be hosting its the third annual Cybersecurity Forum on Thursday, November 10, at Washington Marriott Georgetown. The NCCoE Financial Services team will be attending and sharing more information about its Financial Services projects.
The NCCoE will lead a talk on "Industry/Government Partnership: Cybersecurity through Development of a NIST CSF Profile with US Coast Guard" as part of the NIST Cybersecurity Framework: Use & Deployment session at the 11th Annual Cybersecurity Conference for the Oil & Natural Gas Industry in Houston, Texas on Thursday, November 10, 1:00-2:10 pm CT.
Speaker: Suzanne Schwartz, MD, MBA is the Associate Director for Science & Strategic Partnerships at FDA’s Center for Devices & Radiological Health (CDRH). Her portfolio includes medical device cybersecurity and efforts span incident response, increasing awareness, outreach, partnering, policy and coalition-building. Suzanne chairs CDRH Cybersecurity Working Group. She also co-chairs the Government Coordinating Council for Healthcare & Public Health. Suzanne earned an MD from Albert Einstein College of Medicine, trained in General Surgery & Burn Trauma at the New York Presbyterian Hospital - Weill Cornell Medical Center; an executive MBA from NYU Stern School of Business, and completed the National Preparedness Leadership Initiative – Harvard School of Public Health & Kennedy School of Government.
NCCoE Computer Scientist Gavin O'Brien will participate in the "Information Security: It's Everyone's Problem" session from 10:30m-11:30am at the AEHIX 16 Fall Forum in Phoenix, Arizona. This session explores the current threat landscape and identifies best practices for protecting the organization and information vital to patient care and business operations. This fall forum aims to bring together thought leaders from across health IA, IT, and IS specialties to network and share ideas on how IT can help bend the cost curve.
NCCoE senior engineers Jim Banoczi and Harry Perper will present a session titled "Practical Solutions for Managing Access and Assets" at the 2016 FS-ISAC Fall Summit in Nashville, TN. The session provides an overview of the NCCoE and describe two projects that were identified as significant challenges by FS-ISAC members. The first project outlines a practical solution for identifying and managing IT assets within an organization. The second project, Access Rights Management, addresses how to integrate diverse identity and access management platforms to better control access rights. These projects were initiated through discussions with FS-ISAC members and have broad applicability across the financial sector.