Guest Speaker: Kelley Dempsey, CISSP, Senior Information Security Specialist, National Institute of Standards and Technology, Information Technology Lab/Computer Security Division

10:00

Break

10:15

RMF – Six Steps – SP 800-37 and SP 800-39

10:40

New Responsibilities and Rules: AO, Risk Executive, CIO, SISO, Common Control Providers

11:00

Real-World Security Categorization and Boundary Exercises

Noon

Lunch

1:00

System Security Plan and Development Strategies

1:45

Solutions Trends: Automated, Centralized, Common, and Inherited

2:15

Break

2:30

Risk Assessment Methods

3:00

Real-World Risk Assessment Exercise

3:30

Real-World Common Control Exercise

4:00

Adjourn

Note: Many products will be noted, but noting them is not an endorsement.

View Seminar

Success Strategies for Meeting the 2012 FISMA Requirements Training Seminar : Day 2: Tuesday, June 5

8:00

Continental Breakfast Served

8:30

Security Assessment Report (SAR) and Plan of Action and Milestones (POAM)

9:00

Federal Network Security Guidance from Office of Management and Budget Memorandum 10-28, CyberScope and FISMA Reporting Trends, and the CyberStat Review Process

Guest Speaker: Jeannette Cockrell, Information Technology Specialist, Department of Homeland Security, National Cyber Security Division, Federal Network Security Branch

10:00

Break

10:15

DHS FISMA Reporting Metrics

11:00

SCAP Solutions and Relationship with FISMA Metrics

Noon

Lunch

1:00

What’s Continuous Monitoring?

1:30

Real-World Continuous Monitoring Exercises

2:00

Break

2:15

Continuous Monitoring Plan Development Strategies and Forms; Strategies for Developing Three Sample Plans

3:00

Using the FISMA Results for Gaining More Resources

3:30

Summary

3:45

Adjourn

View Seminar