Using Identity to Safeguard the Nation's Critical Infrastructure from Complex Threats

Monday, June 6, 2016

NCCoE senior security engineer Jim McCarthy will be presenting a webinar on Identity and Access Management in conjunction with the energy sector build team collaborator AlertEnterprise on June 7 from 1pm to 2pm ET. In this session hear directly from industry as well as the nation’s leading research organization about techniques they have been developed to extend identity information beyond the traditional purview of IT by including physical access and OT (operational Technology) access to deliver a more holistic view of security. Learn correlating identity and roles-based attributes to determine access to IT systems, facilities and critical operating assets provides a 360-degree view of security to uncover gaps that cannot be identified by IT or Corporate Security alone.

How NIST is Approaching Attribute Based Access Control (ABAC) and Why It Works

Monday, April 4, 2016

NCCoE cybersecurity engineer, Bill Fisher, will discuss how ABAC enables organizations to take into account contextual factors when managing identity and access control, allowing for more granular analysis and therefore better access decisions. 

Hosted by NCCoE partner, NextLabs, the webinar will explore why ABAC is becoming a priority for many organizations and how it can be implemented to reduce the risk of cyber breaches and internal misuse of sensitive information. 

Date: Tuesday, April 5, 2016
Time: 12:00 p.m. ET - 1:00 p.m. ET

Register for this webinar.

Strengthening Cybersecurity in the Financial Sector with the New NIST Practice Guide

Wednesday, January 13, 2016

Splunk has been working with the National Cybersecurity Center of Excellence (NCCoE) at the National Institute of Standards and Technology (NIST) on an IT asset management system for the financial sector that uses commercially-available products.

The reference architecture, in which Splunk serves as the Operational Intelligence platform, can help financial institutions reduce their risk by enhancing the visibility of assets, identifying vulnerable assets and enabling faster response to security threats.

In this webinar, NCCoE project lead Mike Stone and Splunk's Manish Jiandani will give an overview and demo of the project's reference architecture, as well as participate in a live Q&A session. Click here to find out more about the webinar.

NCCoE Community of Interest Health IT Conference Call

Wednesday, September 23, 2015

The NCCoE will be hosting a conference call for Health IT Community of Interest members on WebEx Online on the fourth Thursday of every month at 2:00 pm EST.

Join online here, or join by phone at 1-855-797-9485 for toll-free, or 1-415-655-0002 for tolled. The meeting number is: 194 867 487. No password is required to access the meeting.

You may also download a copy of the presentation for the call.

Tackling a Critical Health IT Security Challenge - Securing Electronic Health Records on Mobile Devices

Monday, August 24, 2015

Stolen personal information can have negative financial impacts, but stolen medical information cuts to the very core of personal privacy. Medical identity theft already costs billions of dollars each year, and altered medical information can put a person’s health at risk through misdiagnosis, delayed treatment, or incorrect prescriptions. Yet, the use of mobile devices to store, access, and transmit electronic healthcare records is outpacing the privacy and security protections on those devices.

So how can healthcare organizations better secure mobile devices that interact with patient health information?

Attend this free webcast to learn how the NCCoE worked with the healthcare industry and technology vendors to apply standards and commercially available cybersecurity products to formulate a reference design that healthcare organizations can use to improve their security posture.

Speaker: Gavin O’Brien, Computer Scientist, NCCoE, NIST

Register for the webcast and details for tuning into the webcast will be emailed to you. 

This webinar is being hosted by the State of Maryland's Department of Business & Economic Development