Conference

Cybersecurity for Oil and Gas

Monday, May 21, 2018 to Tuesday, May 22, 2018

Join NCCoE Lead Security & Privacy Engineer Julie Snyder as she presents “Identifying and Evaluating Privacy Risks and Making Smart Privacy Engineering Decisions” at the 2018 Summit on Cyber Security for Oil and Gas on May 21 at 11:15 am. This session, which takes place on May 21 at 11:15 am will cover the following:

  • Understanding the distinctions and overlaps between privacy and security
  • Helping to understand the privacy risks and ramifications of new technology implementations
  • Designing information systems to protect privacy, now and in the future

IoT/Mobile Security Panel

Tuesday, April 17, 2018

Join CEOs from leading Maryland cybersecurity companies and NIST-NCCoE for a robust discussion on potential solutions to cybersecurity challenges posed by our increasing reliance on Mobile devices & the Internet of Things (IoT). The dialog will explore private sector and public-sector IoT and mobile challenges that explore ways small cyber companies and startups can work to address future needs with standards-based solutions and innovation. Moderated by NIST Computer Scientist, Tim Polk, the group will highlight the current and future state of security in the age of IoT and Mobile device proliferation. Note: Participation is reserved for RSA Participants, business executives, cyber product buyers, and investors.

 

Enfuse 2018

Tuesday, May 22, 2018

NCCoE Deputy Director Tim Mcbride will present "Recover Quickly & Safely from Ransomware" at the Enfuse 2018 Conference at 8am on May 22. Ransomware, malware, and malicious insiders constantly jeopardize data integrity for any organization regardless of size or industry. These attacks can have consequences that not only impact the data, but can be costly for operations and brand reputation. Stemming from discussions that began with the Financial Services Information Sharing and Analysis Center (FS-ISAC) and their Destructive Malware Task Force, we learned that developing a methodology to recover from these events can be difficult for most organizations. This session will discuss how industry experts and technology collaborators worked with the NCCoE to develop practical cybersecurity guidance on recovering from destructive malware and ransomware. This session will highlight the recently released NIST Special Publication 1800-11, Data Integrity: Recovering from Ransomware and Other Destructive Events.

Cybersecurity for SMBs: Protecting Your Business

Wednesday, April 25, 2018

Join the Maryland Chamber, University of Maryland University College (UMUC) and the Department of Commerce to learn critical ways you can protect your business from cyber attacks from 8am to 10:30am on April 25 at the NCCoE. Hear from experts in an informal session that will give you knowledge you need to stay safe. Join us in person at the NCCoE for network-building and Q&A opportunities, or join us via audio webinar!

Sen. Susan Lee
Co-chair, Law, Policy & Legislation Subcommittee, Maryland Cybersecurity Council

Dave Baggett
Founder & CEO, ITA Software

Ellen Cornelius
Senior Law & Policy Analyst, University of Maryland Center for Health & Homeland Security

Christopher Caruso
U.S. Secret Service, Baltimore Field Office

Tom Quinn
Chief Information Security Officer, Global Technology, Enterprise Security, T. Rowe Price Associates, Inc.

Ola Sage
CEO, CyberRx, e-Management

Mary Ellen Seale
CEO & Founder, National Cybersecurity Society

San Francisco CyberTalks

Monday, April 16, 2018

NCCoE Director and NIST Chief Cybersecurity Advisor, Donna Dodson will join Yubico Founder & CEO Stina Ehrensvard in a fireside chat titled "10 Percent Is Too Little: Time to Pay Attention to Two-Factor Authentication" at 11:20am PT. San Francisco CyberTalks is a TED-like conference for the cybersecurity leadership community, bringing together the top influential leaders from the cybersecurity community, tech industry and government, engaging in discussions around cybersecurity priorities, trends, innovations, and ways to tackle unprecedented security challenges.

Insider Threat 2018 Summit

Monday, March 19, 2018 to Tuesday, March 20, 2018

NCCOE Engineer Harry Perper, will present "Increasing the Adoption of Standards-based Cybersecurity Technologies on Monday, March 19 from 10:35am to 11:20am at the Insider Threat 2018 Summit. Identity and access management is one of the pillars of cybersecurity that directly address the issues of insider threats. The NCCoE will discuss its identity and access management projects. The projects are based on standards based cybersecurity technologies. The goal of this presentation is to convey the concepts the center has developed to integrate available technologies to address current identity and access management challenges.

AlertEnterprise User Group 2018

Tuesday, March 20, 2018 to Wednesday, March 21, 2018

The 2018 AlertEnterprise User Group meeting will focus on Security Convergence with topics such as Physical and Cyber Security, as well as IoT security. NCCoE Egineer Harry Perper will present two sessions: "Leveraging Cyber/Physical Security Convergence for Critical Infrastructure Protection" and "Example Implementation of NIST SP 1800-2 – Adoption Case Study."

 

HT-NEXT 2018

Monday, March 12, 2018 to Wednesday, March 14, 2018

HT-NEXT, held in San Diego, has become the must-attend educational and networking experience for hospitality technology professionals and solution providers. This year, NCCoE’s Bill Newhouse and Jeff Finke will be presenting about cybersecurity in the hospitality industry. Join us to learn about cybersecurity principles that you can implement to help protect your organization.

The two Innovation Lab sessions will be held on Monday, March 11: the morning introductory session will be begin at 10:45, and the afternoon workgroup session will begin at 1:30.

HIMSS18

Monday, March 5, 2018 to Friday, March 9, 2018

Engage with the NCCoE and NIST at the Healthcare Information and Management Systems Society (HIMSS) Annual Conference and Exhibition to learn how we are accelerating the deployment and use of secure, standards-based technologies to enhance cybersecurity.

Presentations

Creating Practical Cybersecurity Guidance for PACS
Tuesday, March 6 at 12:30pm in FH06 in the Federal Health IT Solutions Pavilion
NCCoE Healthcare Sector Lead Jennifer Cawthra alongside Cybersecurity Researcher Kevin Littlefield will discuss the newest healthcare sector project, Securing Picture Archiving and Communication System (PACS). Come learn how the NCCoE is bringing together different stakeholders in the healthcare space, and leveraging standards and commercially available products, to create practical cybersecurity guidance.

Securing “PACS” Through Collaboration Workshop
Tuesday, March 6 at 2:00pm in 4608 Zeno (meeting room)
Following the Creating Practical Cybersecurity Guidance for PACS discussion, the NCCoE Healthcare team will hold a workshop where attendees can expect to gain a better understanding of the NCCoE’s mission, the value of being a PACS collaborator, and the process. We will also hold a roundtable discussion to address PACS cybersecurity challenges and more.

Cybersecurity at NIST
Wednesday, March 7 at 12:30pm at FH22 in the Federal Health IT Solutions Pavilion
NIST's Applied Cybersecurity Division Chief Kevin Stine will discuss his strategic vision for Cybersecurity and Privacy Applications, Cybersecurity Framework, NCCoE, National Initiative for Cybersecurity Education, and Privacy Engineering and Risk Management. He'll also provide the status on critical issues NIST is addressing such as Cryptography, Standards, and more.

NCCoE Kiosk

Stop by the NCCoE Kiosk (10219-05) in the Federal Health IT Solutions Pavilion. 

 

RSA Conference 2018

Monday, April 16, 2018 to Friday, April 20, 2018

Presentations

Recover Quickly & Safely from Ransomware
Monday, April 16 at 4:10pm
With ransomware’s growing impact, recovering enterprise data quickly and ensuring that the data is accurate and safe has become critical. In this seminar, the NCCoE's Brian Abe and Anne Townsend will discuss recently released NIST SP 1800-11, Data Integrity: Recovering from Ransomware and Other Destructive Events, which demonstrates how a company can use standards-based technologies to efficiently recover from data integrity events. Learn more about this seminar.

Identifying Healthcare Cybersecurity Challenges and Reference Designs
Wednesday, April 18, 2018 at 7:00am 
Marriott, Golden Gate B - Table A
Join your fellow healthcare cybersecurity peers from across industry, government, and academia at the RSA Conference for this Birds of a Feather session. The discussion will focus on identifying current cybersecurity challenges in the healthcare industry and applicable reference designs or guidance and standards that could be used improve the cybersecurity of healthcare organizations.

Working Together to Address the Threats to Data Protection
Wednesday, April 18 at 12:30 pm - 1:15 pm
Marriott, Golden Gate A - Table I
Come join individuals from government and private industry in order to strengthen data security, specifically in the areas of data confidentiality, identity and access management. Attendance is strictly limited to allow for a small group experience.

NCCoE Trusted Cloud: A Secure Solution
Wednesday, April 18 at 3pm
NCCoE Director Donna Dodson and RSA CTO Zulfikar Ramzan will discuss how the NCCoE's trusted cloud solution works to deploy data and workloads across hybrid cloud environments. Learn more about this session.

Improving Mobile Authentication for Public Safety and First Responders
Thursday, April 19 at 8am
Bill Fisher, NCCoE Engineer, will discuss the challenge of mobile native application authentication for public safety personnel and demo a reference design developed by NCCoE and industry experts. Learn more and reserve a seat now!

Network monitoring is going away... now what? TLS, QUIC, and beyond
Thursday, April 19 at 8am
Protocol improvements to prevent pervasive monitoring, such as forward secrecy and metadata hiding, are being standardized and deployed in response to greater awareness of threats to network traffic. The changes impact monitoring. The panel includes a cross-section of experts including an impacted enterprise network architect, a NIST security expert working toward solutions, and ACLU technologist. NCCoE Computer Scientist Tim Polk will participate on the panel. Learn more about this panel.

 

Demonstrations

Visit the NCCoE at the NIST Booth #4509 North Expo.

Mobile Application Single Sign-On
Tuesday, April 17 at 9am: StrongAuth Booth #214 South Expo 

Mobile Application Single Sign-On
Tuesday, April 17 at 3pm: NIST Booth #4509 North Expo

Derived PIV Credentials Demo
Wednesday, April 18 at 2pm: Intel Booth #3435 North Expo

Mobile Application Single Sign-On
Wednesday, April 18 at 5pm: NIST Booth #4509 North Expo