Topic: RMF 2.0 for non-Federal Users
Membership Meeting Slides: 2019-05-22 Meeting Presentation
Speaker Presentation: Risk Management for non-Federal Users
Learning objectives
1) Understanding of the NIST Risk Management Framework
2) Briefing on the updates to Revision 2.0 of NIST 800-37
3) Walk through of a fictitious Federal Agency system undergoing the RMF process
The target audience are those who have not yet dealt with the NIST RMF and would like to understand the various components and how it would apply to a specific computer system. The talk will start with the steps included in the RMF process and will end with the review of the controls within one or two control families.
Speaker: Joe Klein, Mitre
Joe Klein is a +30-year veteran of the IT, IA, IoT and IO domains, with extensive experience in DoD, US Government, and commercial sectors. He has a long history of speaking at Computer Science, Technology, Security and Hacker conferences on topics such as IPv6, Time Hacking, Auto Hacking, Physical Security, Risk Management, IoT Security, Cybersecurity as a Business advantage, and success in your security career. National and international speaking venues include Defcon, BlackHat, BSidesDC, ISSA events, ITU, InfraGard, TorCon, SecTor, and Security Days.
He also contributes his talent to standards and practices at NIST, DoD, SPAWAR, IEEE, and IETF.
Please note new meeting schedule – May 2019
5:15 to 5:45 Business Meeting
5:45 to 6:15 Networking and Dinner
6:15 to 7:45 Speaker and Q&A
