The NCCoE's Michael Bartock and Jeff Cichonski will discuss the security challenges highlighted in the NIST report, "Trusted Geolocation in the Cloud: Proof of Concept Implementation" (IR 7904) at the RSA Archer GRC Roadshow in McLean, Va. on December 5, 2013 at 10:45 am. Trusted Geolocation in the Cloud is one of NCCoE's Building Blocks, which address cybersecurity issues that affect multiple industry sectors.
December 5, 2013
9 am - 3 pm
9600 Gudelsky Drive
Rockville, MD 20850
This workshop will review and conduct a deep dive into the Continuous Monitoring Software Asset Management (SAM) Building Block. The building block proposes techniques for meeting SAM challenges. SAM, as envisioned in this building block, requires a standardized approach that provides an integrated view of software throughout its lifecycle. Such an approach must support the following capabilities:
The NCCoE and NIST Computer Security Division, in collaboration with Department of Homeland Security, General Services Administration, and National Security Agency, have developed a proposed building block. The authors encourage you to review the document prior to the workshop to facilitate building block discussion and the exchange of ideas.
This workshop is oriented to security researchers, security practitioners, system integrators, and other parties interested in developing solutions that address the following challenges:
Overview of the National Cybersecurity Center of Excellence
Building Block overview and business drivers
Building Block deep dive
Lunch on your own
Q/A and next steps
To confirm your attendance at this workshop send an email with your name, title, and organization to firstname.lastname@example.org
Please download and review the building block document prior to the workshop.
Whether or not you attend the workshop, we welcome your comments. Send your feedback regarding this building block to email@example.com.
On November 25, 2013 from 7:30 - 9:30 am representatives from the state of Maryland and Montgomery County will visit the NCCoE to showcase resources for cybersecurity companies in Maryland. The centerpieces are the new Maryland cybersecurity investment incentive tax credit and the Montgomery County supplement. Tim McBride will give an overview of NCCoE (PDF). To register for this event, RSVP to Bernadette.Goovaerts@MontgomeryCountyMD.gov.
At the upcoming Information Security Financial Sector conference in London, NCCoE deputy director Nate Lesser will discuss the center's newest project focused on the financial services sector. Look for him there on November 19, 2013 at 2:45 pm. Nate will also participate in networking sessions during the conference.
On October 22, 2013 at 1:30 pm, NCCoE deputy director Nate Lesser will discuss the center's approach to health IT use cases in the session "Healthcare - Security Framework and Solutions" at the Cyber Security Summit 2013 in Minneapolis, Mn.
NCCoE project manager Jonathan Margulies will participate in the panel, “Critical Infrastructure and Key Resources,” on October 20, 2013 at the Security B-Sides conference in Washington, DC.
Curt Barker, a chief cybersecurity advisor to NCCoE, will speak on “Facilitating Critical Infrastructure Adoption of Emerging Cybersecurity Technologies”on September 18, 2013 at the Cyber Security and Critical Infrastructure Protection conference in Arlington, Va.
NCCoE staff members will present a demo and talk titled “The NCCoE and Trusted Geolocation in the Cloud - A Case Study,” on September 18, 2013 at the Software/Supply Chain Assurance Forum in McLean, Va.
The NCCoE’s chief cybersecurity advisor, Curt Barker, will address matching standards and commercially-available components to real-world business problems in order to accelerate adoption of security platforms and increase business opportunities through public trust in electronic commerce in an address to the Business Council for International Understanding on September 17, 2013 in Washington, DC.
NCCoE project manager Jonathan Margulies will attend the EnergySec 9th Annual Security Summit from September 17-19, 2013 in Denver, Co. Stop by the NCCoE table to learn more about our energy sector use cases.
A workshop based on NIST Special Publication 800-162, "Guide to Attribute Based Access Control (ABAC) Definition and Considerations," will be held at the NCCoE on July 17, 2013.
Gavin O'Brien, our Health IT project lead, will speak at the Healthcare Data Analytics meeting on July 9, 2013, in Washington, D.C.
Gavin O'Brien, who heads up our Health IT project, will speak June 27, 2013 at the American Telemedicine Association Federal Telemedicine Policy Summit in Washington, D.C.
Gavin O'Brien, the project manager leading NCCoE's Health IT project, will speak at the Data Science MD meeting titled "Discovering and Securing the Data" on Tuesday, June 18, 2013 at 6:30 pm. Gavin will talk about the NCCoE's process and the status of the Mobile Devices Use Case.
Jonathan Margulies, who leads NCCoE's efforts in the energy sector, visited Oak Ridge National Lab on Tuesday, June 11, 2013 to introduce the center's work to a meeting of the Institute for Information Infrastructure Protection (I3P).
NCCoE Deputy Director Nate Lesser will speak at "Safeguarding Health Information: Building Assurance through HIPAA Security - 2013" on Wednesday, May 22 at 2:30 pm. His talk title is "Health IT and the National Cybersecurity Center of Excellence." For more information, visit the conference website.
NCCoE Deputy Director Nate Lesser and other staff members of the NCCoE will attend the upcoming FS-ISAC & BITS Annual Summit from April 28 to May 1 in Ponte Vedra Beach, FL. Nate will serve on the Public-Private Information Sharing Challenge panel on Tuesday, April 30 from 11:30 am to 12:30 pm. The session will combine government and industry perspectives on the role of government in information sharing with financial sector institutions. The goal is to enhance two-way information sharing that will improve the cyber security posture of the sector. More information is available on the summit's website.
Visit us at booth #250 at the 2013 RSA conference in San Francisco February 25 to March 1, 2013.
Visit the NCCoE booth for a Trusted Geolocation in the Cloud technical demonstration:
Co-sponsored buy TEDCO, the Maryland Technology Development Corporation. Learn about cybersecurity projects at NIST and opportunities to collaborate. On the agenda:
To register, visit http://nistshowcase.eventbrite.com/