To address the dynamic challenge of Insider Threats, organizations must have an agile process that should include training and the need to stay connected with their internal policies, external requirements, evolving risk discovery technology, best practices from within and other organizations, and government lessons learned. Simply stated, training is not a one-and-done or calendar-based ‘check the box activity.’ It is a critical c...

The National Civil Rights Conference is soliciting papers, panel sessions and workshops for the June conference. The conference theme is Engage, Educate & Empower. The deadline for submission of paper, panel, poster and artistic production proposals is May 1, 2023. Dear National Civil Rights Conference Planning Committee and Conference Participants: It is our pleasure to welcome you to the 12th National Conference on Civil Rights. The Nat...

Red Hat and NIST are co-sponsoring an open forum to hear about and discuss the continued evolution of information systems and its impact on cybersecurity. This development is most clearly seen in the connectedness of the numerous infrastructure systems and data that our critical infrastructure now relies on. In the half-day event, hear from leaders and industry that are most shaped by this advancement and how the nation is designing approaches...

The long-term effects of the pandemic continue to push agencies to accelerate IT modernization and move from owning their own on-site data centers to hybrid and multi-cloud architectures. The pandemic spurred greater customer demand for digital services, while employees adapted quickly to working from home. These trends, in turn, heightened the stakes for cybersecurity that protects the endpoints and strengthens data security – part of t...

Organizations face a dynamic and ever-changing threat environment with a myriad of internal and external risks. ATARC’s Insider Risk Working Group proactively expands and enhances the ongoing conversation around risk to personnel, facilities, information, technologies, and critical assets in a collaborative environment, and will host a series of insider-risk webinars on several topics focused on developing foundational insider risk progr...

Hands-On Cyber Security Training Taught by Real-World Practitioners Attend in Orlando, FL or Live Online Learn real-world cyber security skills from top industry experts during SANS 2023 (April 2-7). Join us in Orlando, FL or Live Online to experience interactive training with hands-on labs, practice your skills during one of our NetWars Tournaments, and network with your peers in real time. Choose your course and register now! SANS 2023 Featu...

Hackers, curiosity, security, pen-testers, kindness, analogies and Hollywood criminals. Welcome to the first episode of Risk and Reels with Jeffrey Wheatman, featuring Jayson Street (OG Pen Tester and Chief Chaos Officer for Trusec), a self-proclaimed hacker. WHAT IS RISK AND REELS: A CYBERSECURITY PODCAST? A podcast for movies. A podcast for cyber talk. A podcast for smart people to say smart things to smart listeners. Hosted by Jeffrey Wheat...

As NASA moves forward with its Moonshot, NASA SEWP is continuing its exploration of Supply Chain Risk Management (SCRM) and Cybersecurity Supply Chain Risk Management (C-SCRM). As one of the largest providers of technology equipment and services to government, NASA SEWP is in a unique position to bring leaders together for conversations about the latest developments and guidance, as well as innovative approaches that agencies are taking to pro...

Cyberattacks against organizations are now often using what might be considered a “bank shot” – planting malicious code in software components before they are used in products. When coders draw upon software libraries, whether open source or proprietary, to build new applications, they unwittingly include the malware. This is a less conspicuous method that threatens the software supply chain and harms organizations’ wil...

A Practical Approach to Internal Controls The Green Book sets the standards for an effective internal control system for federal agencies and is a crucial safeguard over public resources. State, local, and quasi-governmental entities, as well as not-for-profit organizations, may adopt the new Green Book standards as a framework for an internal control system. This four hour CPE seminar provides an overview of the principles-based Green Book an...