BEGIN:VCALENDAR VERSION:2.0 PRODID:-//Central Maryland Chapter of ISSA - ECPv6.15.20//NONSGML v1.0//EN CALSCALE:GREGORIAN METHOD:PUBLISH X-WR-CALNAME:Central Maryland Chapter of ISSA X-ORIGINAL-URL:https://issa-centralmd.org X-WR-CALDESC:Events for Central Maryland Chapter of ISSA REFRESH-INTERVAL;VALUE=DURATION:PT1H X-Robots-Tag:noindex X-PUBLISHED-TTL:PT1H BEGIN:VTIMEZONE TZID:America/New_York BEGIN:DAYLIGHT TZOFFSETFROM:-0500 TZOFFSETTO:-0400 TZNAME:EDT DTSTART:20220313T070000 END:DAYLIGHT BEGIN:STANDARD TZOFFSETFROM:-0400 TZOFFSETTO:-0500 TZNAME:EST DTSTART:20221106T060000 END:STANDARD BEGIN:DAYLIGHT TZOFFSETFROM:-0500 TZOFFSETTO:-0400 TZNAME:EDT DTSTART:20230312T070000 END:DAYLIGHT BEGIN:STANDARD TZOFFSETFROM:-0400 TZOFFSETTO:-0500 TZNAME:EST DTSTART:20231105T060000 END:STANDARD BEGIN:DAYLIGHT TZOFFSETFROM:-0500 TZOFFSETTO:-0400 TZNAME:EDT DTSTART:20240310T070000 END:DAYLIGHT BEGIN:STANDARD TZOFFSETFROM:-0400 TZOFFSETTO:-0500 TZNAME:EST DTSTART:20241103T060000 END:STANDARD BEGIN:DAYLIGHT TZOFFSETFROM:-0500 TZOFFSETTO:-0400 TZNAME:EDT DTSTART:20250309T070000 END:DAYLIGHT BEGIN:STANDARD TZOFFSETFROM:-0400 TZOFFSETTO:-0500 TZNAME:EST DTSTART:20251102T060000 END:STANDARD BEGIN:DAYLIGHT TZOFFSETFROM:-0500 TZOFFSETTO:-0400 TZNAME:EDT DTSTART:20260308T070000 END:DAYLIGHT BEGIN:STANDARD TZOFFSETFROM:-0400 TZOFFSETTO:-0500 TZNAME:EST DTSTART:20261101T060000 END:STANDARD END:VTIMEZONE BEGIN:VEVENT DTSTART;VALUE=DATE:20251127 DTEND;VALUE=DATE:20251128 DTSTAMP:20260418T094645 CREATED:20241215T010830Z LAST-MODIFIED:20241215T010830Z UID:11423-1764201600-1764287999@issa-centralmd.org SUMMARY:Thanksgiving Day DESCRIPTION: URL:https://issa-centralmd.org/calendar/thanksgiving-day-3/ LOCATION:Md CATEGORIES:Meetings END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20251119T170000 DTEND;TZID=America/New_York:20251119T190000 DTSTAMP:20260418T094645 CREATED:20241214T225140Z LAST-MODIFIED:20251124T154751Z UID:11398-1763571600-1763578800@issa-centralmd.org SUMMARY:Membership Meeting 11/19/2025 DESCRIPTION:Chapter Business Meeting Slides: 2025-11-19 Meeting Presentation \nSpeaker Slides: 2025-11-19 ISSA Practical Applications with Google AI using Gemini for Workspace \nTopic: .Practical Applications with Google AI using Gemini for Workspace  \nIn this presentation\, AI expert\, Kevin A. McGrail dives into AI’s history and its ethical implications for a safer digital future. Discover Google Gemini AI’s powerful Workspace features and applications. Learn to craft effective AI prompts and leverage tools like NotebookLM. Understand data organization for maximizing AI capabilities and mitigating bias. Explore advanced techniques and compliance in AI. \n\nSpeaker: Kevin A. McGrail\, CEO Emeritus\, Peregrine Computer Consultants Corporation \nKevin A. McGrail\, aka “KAM”\, is the CEO emeritus for PCCC\, a Cloud Fellow at DitoWeb.com\, and the Chair Emeritus for the Apache SpamAssassin project.  He specializes in privacy and security for network\, e-mail\, and business with decades of experience battling spam\, malware\, and phishes. As a Cloud Fellow for Dito\, he helps organizations migrate and manage their Cloud Cybersecurity.  He founded and leads Dito’s Cyber Security practice\, awarded Google’s Cloud Security partner of the year in June 2022 and the Google preferred partner for Civilian and DoD Authorities to Operate. He is a Google Developer Expert for AI/ML\, Cloud\, and Google Workspace as well as a member expert in the U.S. Marine Corps Cyber Auxiliary. KAM enjoys working with Open Source Software and is a proud member of the Apache Software Foundation. He has battled spammers for decades and his research protects hundreds of millions of Internet users every day. In February 2025\, he was awarded the Mary Litynski lifetime achievement award for keeping the internet safe from M3AAWG.org. KAM is a Center for Innovative Technology MACH37 Cyber Security Incubator Graduate and a member of the board of advisors for Virtru.com & SecurityUniversity.edu.  He is also named a Distinguished Senior Fellow as a thought leader in the field of Cyber Security at Thomas University’s Armed Services Institute in the Center for Military Life. KAM also lives with a rare disease and has been a volunteer Board Member of the DysautonomiaSupport.org as well as an Officer and Board member of POAC-NoVA.org helping other people improve their lives. \n  URL:https://issa-centralmd.org/calendar/membership-meeting-11-19-2025/ LOCATION:Stumpy’s Hatchet House\, 6695 Dobbin Rd\, Columbia\, MD\, 21045\, United States CATEGORIES:Meetings ORGANIZER;CN="ISSA Central MD Chapter":MAILTO:V_P_Operations@issa-centralmd.org END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20251022T170000 DTEND;TZID=America/New_York:20251022T190000 DTSTAMP:20260418T094645 CREATED:20241214T224918Z LAST-MODIFIED:20251022T221813Z UID:11396-1761152400-1761159600@issa-centralmd.org SUMMARY:Membership Meeting 10/22/2025 DESCRIPTION:Chapter Business Meeting Slides: 2026-10-22 Business Meeting Slides \nCorelight’s Capture the Flag Exercise \nOverview\nJoin us for an immersive lab-based\, instructor-led defensive Capture the Flag exercise with Corelight. Participants will dive into one or more real-world scenarios to detect and respond to threats using logs from Suricata and Zeek. \nAgenda \n● Introduction to Zeek: Brief overview of Zeek and its role in network security. Understanding how to leverage Zeek data for threat detection.\n● Hands-on Hunting: Participants will actively engage in a variety of hunting exercises across different protocols. Use your wits to identify and respond to potential threats discovered in Zeek data. Questions are encouraged\, but participants have full control at the keyboard.\n● Competition and Scoreboard: Participants compete against each other in a friendly competition. Scores will be tracked on a real-time scoreboard.\n● Debriefing: Discussion on the attacks witnessed during the exercise. Brief overview of how Corelight can enhance threat detection and response capabilities.\n● Corelight Integration: Learn how Corelight can be integrated into your network defense strategy. Understand the added value Corelight brings to Zeek-powered threat detection. \nRequirements \nEach participant will need their own laptop\, a standard web browser\, and a connection to the Internet. \nConclusion\nAt the end of the event\, participants will not only have honed their threat detection skills but will also have gained insights into leveraging Suricata and Zeek for effective network defense. \n  URL:https://issa-centralmd.org/calendar/membership-meeting-10-22-2025/ LOCATION:Stumpy’s Hatchet House\, 6695 Dobbin Rd\, Columbia\, MD\, 21045\, United States CATEGORIES:Meetings ORGANIZER;CN="ISSA Central MD Chapter":MAILTO:V_P_Operations@issa-centralmd.org END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20250924T170000 DTEND;TZID=America/New_York:20250924T190000 DTSTAMP:20260418T094645 CREATED:20241214T224735Z LAST-MODIFIED:20250924T221939Z UID:11394-1758733200-1758740400@issa-centralmd.org SUMMARY:Membership Meeting 9/24/2025 DESCRIPTION:Chapter Business Meeting Slides: 2025-09-24 Business Meeting Slides \nSpeaker Slides: From Firefighting To Strategic Focus: Overcoming Workforce Gaps To Drive IT Performance \nTopic: From Firefighting To Strategic Focus: Overcoming Workforce Gaps To Drive IT Performance \n\nAs cybersecurity and IT teams face rising threat complexity and a shrinking talent pipeline\, many leaders are stuck in reactive mode—undermining trust\, adoption\, and long-term strategy. Based on insights from a cross-sector study with 14 senior IT and IS leaders\, this session reveals three key shifts needed to strengthen internal alignment\, accelerate results\, and lead effectively through change. Attendees will gain actionable strategies to build influence\, adaptability\, and team resilience—even with limited resources. \nThe IT and cybersecurity landscape is under immense pressure—shaped by rapid innovation\, rising threat complexity\, and a workforce pipeline that’s struggling to keep up. Many teams find themselves in constant firefighting mode\, unable to fully leverage the systems\, talent\, or strategic priorities at their disposal. \nIn this session\, Christine Springer\, Founder and CEO of Rising Culture Group\, shares insights from a cross-sector study of 14 senior IT and IS leaders—including those leading security\, infrastructure\, and digital transformation. The findings expose critical yet often overlooked internal risks: eroding trust\, lagging tech adoption\, and leadership pipelines that aren’t built to meet today’s demands. \nAttendees will walk away with: \n\nA 3-part framework to shift out of reactive mode and build long-term strategic capacity\nReal-world examples of how technical leaders are developing power skills to drive alignment\, influence\, and resilience\nPractical steps to strengthen team adaptability and internal service—even with a leaner bench\n\nIf your team is stretched thin\, under pressure\, or navigating high-stakes change\, this session will offer actionable strategies to lead more effectively in uncertain times. \nSpeaker: Christine Springer\, Founder and CEO of Rising Culture Group \nChristine Springer is the Founder of Rising Culture Group and a trusted advisor to leaders seeking to drive results while creating a supportive environment for team growth. With a background in Psychology from the University of Texas and a master’s degree in physical therapy from Texas Woman’s University\, Christine has spent her entire career helping people and organizations. \nChristine and her team specialize in helping technical leaders migrate from expert contributors to trusted leaders who can inspire buy-in and drive strategic outcomes. \nChristine is certified in Everything DiSC and Five Behaviors of a Cohesive Team. She is also a certified coach. URL:https://issa-centralmd.org/calendar/membership-meeting-9-24-2025/ LOCATION:Stumpy’s Hatchet House\, 6695 Dobbin Rd\, Columbia\, MD\, 21045\, United States CATEGORIES:Meetings ORGANIZER;CN="ISSA Central MD Chapter":MAILTO:V_P_Operations@issa-centralmd.org END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20250827T170000 DTEND;TZID=America/New_York:20250827T190000 DTSTAMP:20260418T094645 CREATED:20241214T224549Z LAST-MODIFIED:20250905T023918Z UID:11392-1756314000-1756321200@issa-centralmd.org SUMMARY:Membership Meeting 8/27/2025 DESCRIPTION:Click HERE to register for the August 27\, 2025 Membership Meeting \nChapter Business Meeting Slides: 2025-08-27 Meeting Presentation \nSpeaker Slides: ISSA Central Maryland – Building a Cybersecurity Program from Noting (Aug 27 2025) \nTopic: Building a Cyber Security Program from Nothing – First 90 Days \nLaunching a cybersecurity program from the ground up is one of the most challenging — and rewarding — opportunities in a security professional’s career. In this session\, I will guide you through the critical first steps: how to begin with clarity when there’s no existing program\, align security with business drivers\, and build trust by making security and compliance accessible to all. You’ll leave with actionable insights\, key considerations\, and a roadmap to help you make a lasting impact in your first 90 days — and set the tone for long-term success. \n\nSpeaker: David Brown\, Head of Security & Compliance\, Andesite AI\, Inc. (“Andesite”) \nDave Brown is the Head of Security & Compliance at Andesite AI\, leading security\, compliance\, and IT transformation strategies. Formerly at Qualtrics\, he integrated the Clarabridge security program after its $1.12 billion acquisition. At US-CERT\, he held leadership roles\, including Deputy Director\, where he oversaw national cybersecurity initiatives. Dave holds an M.S. in Management and Information Systems Security\, has three certifications (QTE\, CISM\, CISSP)\, and is President of the ISSA Blue Ridge Chapter. He also authored The Lean CISO: Bootstrapping Cybersecurity in Startups. \nClick HERE to register for the August 27\, 2025 Membership Meeting URL:https://issa-centralmd.org/calendar/membership-meeting-8-27-2025/ LOCATION:Stumpy’s Hatchet House\, 6695 Dobbin Rd\, Columbia\, MD\, 21045\, United States CATEGORIES:Meetings ORGANIZER;CN="ISSA Central MD Chapter":MAILTO:V_P_Operations@issa-centralmd.org END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20250723T170000 DTEND;TZID=America/New_York:20250723T190000 DTSTAMP:20260418T094645 CREATED:20241214T224420Z LAST-MODIFIED:20250724T010706Z UID:11390-1753290000-1753297200@issa-centralmd.org SUMMARY:Membership Meeting 7/23/2025 DESCRIPTION:Click HERE to register for the July 23\, 2025 Membership Meeting \nChapter Business Meeting Slides: 2025-07-23 Meeting Presentation \nSpeaker Slides: TBD \nTopic: Convergence of Networking and Security \nAs digital infrastructure becomes increasingly complex and interconnected\, the traditional boundaries between networking and security are dissolving. This talk explores the foundational principles of security—defining risk\, the core triad of confidentiality\, integrity\, and availability—and how these principles underpin every secure system. We’ll examine the critical role of identity in modern architectures and trace the historical evolution of networking alongside the reactive development of security controls. \nWith this context\, the session will delve into the challenges of implementing a true Zero Trust model in today’s dynamic environments\, where perimeter-based defenses are no longer sufficient. Finally\, we’ll explore how the advent of 5G technology exemplifies the convergence of networking and security\, enabling orchestration\, automation\, and policy enforcement at unprecedented scale and speed. Attendees will leave with a deeper understanding of how integrated approaches are shaping the future of secure\, resilient networks. \n\nSpeaker: David Henning\, Global Director Cybersecurity Operations\, Hughes Network Systems – An EchoStar Company \nDavid has over 26 years of experience in the Information Security field\, 21 of them with Hughes Network Systems. He has worked for major universities\, large government agencies\, and as a consultant for a variety of corporations. David is currently the Director of the Security Operations Center team at HughesNet. He started out as a firewall and IDS analyst heading up the first IDS ever installed at the USDA. He went on to perform penetration testing\, risk assessments\, and worked at an MSSP monitoring customer IDS. David earned his CISSP in 2005\, GCPM Gold in 2009\, PCI ISA in 2015\, and GSTRT in 2024. Previously\, David has worked for SANS building demonstration networks at security conferences and mentoring CISSP training sessions. At Hughes\, David is also responsible for PCI and other compliance efforts. He is looking forward to sharing his experiences ensuring the security of manufacturing systems. \nClick HERE to register for the July 23\, 2025 Membership Meeting URL:https://issa-centralmd.org/calendar/membership-meeting-7-23-2025/ LOCATION:Stumpy’s Hatchet House\, 6695 Dobbin Rd\, Columbia\, MD\, 21045\, United States CATEGORIES:Meetings ORGANIZER;CN="ISSA Central MD Chapter":MAILTO:V_P_Operations@issa-centralmd.org END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20250625T170000 DTEND;TZID=America/New_York:20250625T190000 DTSTAMP:20260418T094645 CREATED:20241214T224228Z LAST-MODIFIED:20250624T230328Z UID:11388-1750870800-1750878000@issa-centralmd.org SUMMARY:Membership Meeting 6/25/2025 DESCRIPTION:Click HERE to register for the June 25\, 2025 Membership Meeting \nChapter Business Meeting Slides: TBD \nSpeaker Slides: TBD \nTopic: The perils of introducing AI at scale for security practitioners \n\nWhat sneaks in via vendors\, what comes in via the supply chain for built app\, and issues with monitoring and defending it. I will also cover the issues of declining trust in content and results based on AI recycling its own output. \n\n\n\nSpeaker: Amélie Koran \n\nAmélie Erin Koran is a seasoned technology and cybersecurity executive with over 25 years of leadership across both public and private sectors\, including roles at Walmart Global Technology\, Electronic Arts\, Splunk\, and multiple U.S. federal agencies. She has driven modernization and innovation initiatives across cybersecurity\, enterprise architecture\, and DevSecOps environments\, and has been instrumental in shaping national and international cybersecurity and technology policy. A frequent keynote speaker at major industry events such as USENIX LISA\, ShmooCon\, InfoSec World\, and DEF CON\, she was recently a Senior Fellow at the Atlantic Council\, where she advises on digital supply chain security and open-source software practices. \n\n\nClick HERE to register for the June 25\, 2025 Membership Meeting\nThe ISSA Central MD Chapter is unable to support non-US in person registrants this month. URL:https://issa-centralmd.org/calendar/membership-meeting-6-25-2025/ LOCATION:Stumpy’s Hatchet House\, 6695 Dobbin Rd\, Columbia\, MD\, 21045\, United States CATEGORIES:Meetings ORGANIZER;CN="ISSA Central MD Chapter":MAILTO:V_P_Operations@issa-centralmd.org END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20250528T170000 DTEND;TZID=America/New_York:20250528T190000 DTSTAMP:20260418T094645 CREATED:20241214T224052Z LAST-MODIFIED:20250617T165139Z UID:11386-1748451600-1748458800@issa-centralmd.org SUMMARY:Membership Meeting 5/28/2025 DESCRIPTION:  \nChapter Business Meeting Slides: Membership Meeting 5/28/2025 \nSpeaker Slides: Thought Leadership \nTopic: Data Security: The Missing Context  \nJoin us for this executive session designed specifically for CISOs and cybersecurity leaders seeking a more effective\, modern approach to data security. You’ll learn why traditional DLP solutions have consistently underdelivered—failing to protect critical business data and demanding constant manual input. We’ll explore how Concentric AI uses powerful\, contextual AI to automatically discover\, classify\, and secure sensitive information—without relying on rules\, regex\, or training samples. Through compelling use cases\, we’ll demonstrate how semantic understanding of data enables better governance\, focused remediation\, and smarter protection of business-critical assets like IP\, financial data\, and strategic plans. Walk away with actionable insights into how context-driven security strategies can reduce risk\, simplify compliance\, and empower your team to confidently support GenAI adoption across the enterprise. It’s time to rethink data security. \n\nSpeaker: Patrick McNaught\, Senior Solutions Architect\, Concentric AI \nPatrick previously worked at other data discovery/classification and DSPM vendors over his 10 years in the data security space. Based in Boston\, MA\, Patrick brings his security expertise and consultative approach to guide customers through their data security journey. \n  URL:https://issa-centralmd.org/calendar/membership-meeting-5-28-2025/ LOCATION:Stumpy’s Hatchet House\, 6695 Dobbin Rd\, Columbia\, MD\, 21045\, United States CATEGORIES:Meetings ORGANIZER;CN="ISSA Central MD Chapter":MAILTO:V_P_Operations@issa-centralmd.org END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20250423T170000 DTEND;TZID=America/New_York:20250423T190000 DTSTAMP:20260418T094645 CREATED:20241214T223743Z LAST-MODIFIED:20250501T235740Z UID:11384-1745427600-1745434800@issa-centralmd.org SUMMARY:Membership Meeting 4/23/2025 DESCRIPTION:Special meeting guests – Carroll Community College Cybersecurity Student Club \n \nChapter Business Meeting Slides: Membership Meeting 04/23/2025 \nSpeaker Slides: ISSA-April-23-2025-TTP-Presentation.pdf \nTopic: .Stakeholder Management in Cybersecurity \nBrian Vaughan will host a discussion on the pitfalls and pratfalls that can arise when clients or employer management fail to recognize the importance of proper cyber security processes and procedures.  Given the present environment in which we live\, this topic remains one of high concern\, as it represents a continuous and ongoing problem. \n\n\nSpeaker: Brian Vaughn\, Technology Transition Paradigm \nBrian Vaughn co-founded and led three IT service companies Dataprise\, Shipshape IT and Technology Transition Paradigm A Managed Service Provider and Cyber Security consultancy. Brian also donates time as the President for the Information Technology Foundation (ITF)\, a non-profit partnership between Montgomery County Public Schools and the local business community. ITF promotes IT education in grades K-12\, preparing the next generation of technology professionals. \nBrian has a Bachelor of Science degree from the University of Maryland in Political Science and graduated in 1991. He lives in Maryland and has one daughter in college. \nBrian enjoys snowboarding\, golf\, soccer\, guitar\, basketball\, and politics. \n  URL:https://issa-centralmd.org/calendar/membership-meeting-4-23-2025/ LOCATION:Stumpy’s Hatchet House\, 6695 Dobbin Rd\, Columbia\, MD\, 21045\, United States CATEGORIES:Meetings ORGANIZER;CN="ISSA Central MD Chapter":MAILTO:V_P_Operations@issa-centralmd.org END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20250326T170000 DTEND;TZID=America/New_York:20250326T190000 DTSTAMP:20260418T094645 CREATED:20241214T223506Z LAST-MODIFIED:20250331T192837Z UID:11381-1743008400-1743015600@issa-centralmd.org SUMMARY:Membership Meeting 3/26/2025 DESCRIPTION:Chapter Business Meeting Slides: 2025-03-26 Meeting Slides \nSpeaker Slides: Redefining the Perimeter \nTopic: Redefining the Perimeter: Zero Trust & Device-Bound Access Security  \nThe phrase “identity is the new perimeter” is often used to advocate for centralized Identity and Access Management (IAM) and the rigorous application of least-privilege principles. These concepts align with widely adopted Zero Trust Architecture (ZTA) networking models\, frequently positioned as an evolution beyond traditional perimeter-based security. Yet\, despite these advancements\, security breaches continue to rise. In this presentation\, Jim Mathews (Triangle Cyber) and David Rihak (Peig) will dissect the technical reasons why stolen credentials remain the leading cause of successful attacks—and what can be done to mitigate this persistent threat. They will explore the limitations of passwords\, traditional MultiFactor Authentication (MFA)\, and even newer authentication methods\, highlighting why these approaches fall short in ensuring truly reliable Zero Trust systems. Most importantly\, they will\noutline how device-bound access security can serve as a foundational element of a resilient cloud security strategy\, ensuring stronger\, more reliable policy enforcement across modern enterprise Zero Trust systems. \n\nSpeaker: David Rihak: CEO of Peig: David Rihak: As the CEO and co-founder at Peig\, David helps organizations get rid of passwords and up their cyber game with passwordless access security. Before this\, David was a Digital Identity Director at ADUCID\, where he co-designed\ncitizen-centric identity solutions and helped develop federal and private partnerships. As a frequent speaker at security conferences\, David is a vivid promoter of humancentric security architectures that leave passwords in the dust. \nSpeaker: James Matthews: CEO of Triangle Cyber: Jim Matthews is the Founder and President / CEO of Triangle Cyber. Jim is an Electrical Engineer and former Raytheon Engineering Fellow with over 30 years of engineering and operations experience in information technology\, networks\, cybersecurity\, system hardening\, and risk / vulnerability assessments. He has supported multiple DoD and Federal programs\, including US Navy\, Missile Defense Agency (MDA)\, and Dept of Homeland Security / Cybersecurity & Infrastructure Security Agency (DHS/CISA). He has also led engineering teams that developed mission-critical capabilities\, including a global network of command & control and sensors for missile defense\, a geographically distributed intrusion detection system. Jim\, a strong advocate of agile methodologies\, is also a Scaled Agile Framework (SAFe) Practice Consultant (SPC) and teaches SAFe certification courses. He currently serves as Chief Architect for a major DHS/CISA cybersecurity program. \n  URL:https://issa-centralmd.org/calendar/membership-meeting-3-26-2025/ LOCATION:Stumpy’s Hatchet House\, 6695 Dobbin Rd\, Columbia\, MD\, 21045\, United States CATEGORIES:Meetings ORGANIZER;CN="ISSA Central MD Chapter":MAILTO:V_P_Operations@issa-centralmd.org END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20250226T170000 DTEND;TZID=America/New_York:20250226T190000 DTSTAMP:20260418T094645 CREATED:20241214T223114Z LAST-MODIFIED:20250304T225910Z UID:11375-1740589200-1740596400@issa-centralmd.org SUMMARY:Membership Meeting 2/26/2025 DESCRIPTION:Chapter Business Meeting Slides: February 2025 Membership Meeting Minutes \nChapter Meeting and Speaker Recording: Meeting and Speaker Recording \nTopic: Russian and Chinese disinformation \nSpeaker: Dr. Gregory Carpenter\, Principal Partner of CW PENSEC \n\n\nDr. Gregory Carpenter is the Principal Partner of CW PENSEC\, holds the title of Fellow of the Royal Society for the Arts in London\, and was named the National Security Agency’s Operations Officer of the Year. He is coauthor of Reverse Deception and an advisor for RedSeer Security\, a Senior Advisor for ARIC\, Inc.\, and a Special Operations Medical Association member. Dr. Carpenter has also served on the International Board of Advisors for the Mackenzie Institute and as an advisor for EC-Council University. \nPrior to his current role\, Dr. Carpenter held various senior military and civilian positions including Chief Security Officer\, Vice President for Cyber Operations\, Chief of Security Testing\, Chief Operations Officer\, Counterintelligence Division Chief\, Chief of Special Space Operations\, and Functional Team Lead for Electronic Warfare. \nGregory is a retired officer who served 27 years in the U.S. Army. He holds a Bachelor of Science\, a Master of Science\, and a Doctorate in Public Health. His professional certifications include Certified Information Security Manager\, Lean Six-Sigma Black Belt\, and ISO-9000 lead auditor. \n  URL:https://issa-centralmd.org/calendar/membership-meeting-2-26-2025/ LOCATION:Stumpy’s Hatchet House\, 6695 Dobbin Rd\, Columbia\, MD\, 21045\, United States CATEGORIES:Meetings ORGANIZER;CN="ISSA Central MD Chapter":MAILTO:V_P_Operations@issa-centralmd.org END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20250122T170000 DTEND;TZID=America/New_York:20250122T190000 DTSTAMP:20260418T094645 CREATED:20241214T180515Z LAST-MODIFIED:20250125T051413Z UID:11369-1737565200-1737572400@issa-centralmd.org SUMMARY:Membership Meeting 1/22/2025 DESCRIPTION:Chapter Business Meeting Slides: January 2025 Membership Meeting Slides \nDTEX Sponsor Slides: DTEX-Corporate Pitch Deck \nSpeaker Slides: Hacking LLM-IOActive \nTopic: Hacking LLM: Attacks & Defenses Against Large Language Models \n\n\n\n\n\n\nThis talk will focus on defining what LLM is. Take a look at the OWASP top 10 for LLM\, then dive into Prompt Injection and how attackers use prompts to make the model ignore its original instructions to perform unintended actions. \n\n\n\n\n\n\n\n\nSpeaker: Ilker Adiyaman\, IOActive \nIlker Burak Adiyaman is a Security Consultant at IOAcive. He has more than 15 years of industry experience\, and has a proven track record of accomplishments on web engineering and security testing. During his professional experience\, he worked with companies in Turkey and in US\, gained significant experience on secure code development using multiple programming languages\, web security testing and acquired skills on application and network security. URL:https://issa-centralmd.org/calendar/membership-meeting-1-22-2025/ LOCATION:Stumpy’s Hatchet House\, 6695 Dobbin Rd\, Columbia\, MD\, 21045\, United States CATEGORIES:Meetings ORGANIZER;CN="ISSA Central MD Chapter":MAILTO:V_P_Operations@issa-centralmd.org END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20241218T170000 DTEND;TZID=America/New_York:20241218T190000 DTSTAMP:20260418T094645 CREATED:20231115T233550Z LAST-MODIFIED:20241218T231911Z UID:9072-1734541200-1734548400@issa-centralmd.org SUMMARY:Membership Meeting 12/18/2024 DESCRIPTION:Click Here to register for the December ISSA Central MD Monthly Meeting\nChapter Business Meeting Slides: Security-Essentials-for-Business-Growth-in-2025\nSpeaker Slides: Security-Essentials-for-Business-Growth-in-2025\nTopic: Cybersecurity Essentials for SMB Growth in 2024 \nIn today’s rapidly evolving business landscape\, organizations face increasing pressure to maintain robust cybersecurity practices while adopting cloud services\, SaaS platforms\, and AI tools. This presentation examines critical security practices that businesses should implement in 2024\, highlighting how traditional security risks have transformed with the shift to third-party services. Through real-world examples of breaches and near-misses\, we explore the often-overlooked risks in common business tools\, the challenges of vendor risk management\, and the critical importance of maintaining defensible security practices. Special attention is given to upmarket growth challenges\, where larger clients demand extensive security documentation and proof of controls\, along with emerging considerations for AI security policy. By understanding and implementing these essential security measures\, businesses can better position themselves for growth while protecting against evolving cyber threats and meeting increasingly stringent client security requirements. \n\nSpeaker: Albie Swartz\, founder of Secureside \nAlbie Swartz is the founder of Secureside\, a Virtual CISO & Cybersecurity business. He is an experienced IT and Information Security professional with a focus in healthcare and has spent the past 7 years consulting and providing cyber and IT services to clients. \nClick Here to register for the December ISSA Central MD Monthly Meeting URL:https://issa-centralmd.org/calendar/membership-meeting-12-18-2024/ LOCATION:Stumpy’s Hatchet House\, 6695 Dobbin Rd\, Columbia\, MD\, 21045\, United States CATEGORIES:Meetings END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20241120T170000 DTEND;TZID=America/New_York:20241120T190000 DTSTAMP:20260418T094645 CREATED:20231115T233404Z LAST-MODIFIED:20241124T021742Z UID:9070-1732122000-1732129200@issa-centralmd.org SUMMARY:Membership Meeting 11/20/2024 DESCRIPTION:Click Here to register for the November ISSA Central MD Monthly Meeting\nChapter Business Meeting Slides: November Membership Meeting Slides \nSpeaker Slides: TBD \nTopic: Zero Trust Methodology with a Heavy Push into SASE \n\n\n\n\n\n\n\nIn today’s rapidly evolving business landscape\, organizations face increasing pressure to maintain robust cybersecurity practices while adopting cloud services\, SaaS platforms\, and AI tools. This presentation examines critical security practices that businesses should implement in 2024\, highlighting how traditional security risks have transformed with the shift to third-party services. Through real-world examples of breaches and near-misses\, we explore the often-overlooked risks in common business tools\, the challenges of vendor risk management\, and the critical importance of maintaining defensible security practices. Special attention is given to upmarket growth challenges\, where larger clients demand extensive security documentation and proof of controls\, along with emerging considerations for AI security policy. By understanding and implementing these essential security measures\, businesses can better position themselves for growth while protecting against evolving cyber threats and meeting increasingly stringent client security requirements.\n\n\n\n\n\n\n\n\n\n\n\nSpeaker: Shawn Slater\, Network Security Practice Lead\, GuidePoint Security  \nShawn Slater\, Practice Lead\, Network Security has been working in the fields of networking and information security since 2006. He has a strong routing and switching background with various vendor technologies from Cisco\, Juniper\, and others leading him to pursue increased responsibilities in the network security space. Beginning with Juniper Netscreen and Cisco ASA firewalls earlier in his career\, his focus is Next Generation firewall technologies from vendors such as Palo Alto Networks. His experience on both the Enterprise and value-added resellers (VAR) sides includes countless successful deployments and migrations of multiple firewall technologies to these next generation platforms. With the growth of the Public Cloud\, he focused on Amazon Web Services (AWS) and Microsoft Azure\, deploying all manner of Next Generation firewalls in traditional Transit VPC/VNET and Gateway Load Balancer designs. His experience crosses internationally to all areas of industry including education and government (i.e.\, U.S. Department of Defense (DoD)\, the Federal Reserve Bank)\, Kimpton Hotels\, and the Export Import Bank of the United States. Shawn is focused on efficiently delivering the right solution for the customer while ensuring the maintaining staff is properly trained to manage and support it. \nShawn holds active certifications and accreditations from numerous security and network vendors including Cisco with the CCNP Routing and Switching and CCNP Security as well as numerous with Palo Alto including Palo Alto Certified Network Security Engineer (PCNSE)\, Palo Alto Certified Network Security Consultant (PCNSC) and the PSE: Professional series for Platform\, Endpoint and Data Center/Cloud. \nNote: If you are registering as a non-US citizen and plan to attend in person\, Please notify the President or V P Operations at least one week prior to the meeting. URL:https://issa-centralmd.org/calendar/membership-meeting-11-20-2024/ LOCATION:Stumpy’s Hatchet House\, 6695 Dobbin Rd\, Columbia\, MD\, 21045\, United States CATEGORIES:Meetings END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20241023T170000 DTEND;TZID=America/New_York:20241023T190000 DTSTAMP:20260418T094645 CREATED:20231115T233159Z LAST-MODIFIED:20241023T221440Z UID:9068-1729702800-1729710000@issa-centralmd.org SUMMARY:Membership Meeting 10/23/2024 DESCRIPTION:Click Here to register for the October ISSA Central MD Monthly Meeting\nChapter Business Meeting Slides: October Membership Meeting Slides \nSpeaker Slides: TBD \nTopic: Exploring Linux and Android Software in the Automotive World \nEven if the most ambitious plans for Software Defined Vehicles are not realized\, vehicles are becoming more software defined every year. The ability to dynamically change functionality and target hardware on vehicles will drive more advanced operating systems than those currently in wide use in automotive\, like Classic AutoSAR. Many new automotive platforms will choose Linux and Android because of their popularity and broad use in many different domains. Linux and Android are widely deployed in secure systems\, but what about securing them for automotive applications? This talk will briefly review how Linux and Android are currently being deployed in automotive applications. The current security advantages and limitations of automotive Linux and Android are discussed. Finally\, the talk will chart a path forward on securing the application of these important operating systems for automotive systems.\n\n\nSpeaker: Anuja Sonalker\, PhD\, CEO STEER Tech \nAnuja Sonalker is the founder and CEO of autonomous vehicle software company\, STEER Tech and has been recognized as Automotive News’ Top 100 Leading Women in the North American Automotive Industry (2020)\, and Distinguished Alumni of University of Maryland. Dr. Sonalker draws two decades of experience from both the automotive industry and the US cybersecurity defense sector. Most recently she was appointed to the Board of the US DOT National Center for Transportation Cybersecurity and Resiliency. Under her leadership\, STEER emerged as Automotive News Best Emerging Business Model and Fast Company’s honorable mention for Ideas that Change the World. Prior to STEER she held executive leadership positions at global organization Battelle where she led their automotive cybersecurity practices\, go to market and successfully franchised the Battelle Cyberauto Challenge to SAE and at Parsons and Cobham PLC.  She holds several chairperson positions leading global\, pan-industry efforts in Automotive Cybersecurity at SAE (Society of Automotive Engineers) and ISO (International Standards Organization). Apart from these\, Dr. Sonalker serves on the following esteemed boards: \n\nBoard of the US DOT National Center for Transportation Cybersecurity and Resiliency (established by the President’s Order)\nExecutive Board Member of Center for Automotive Research (CAR)\, Michigan\, USA\nBoard of Visitors for the University of Maryland\nThe Board of PAVE (Partners for Automated Vehicle Education)\nEconomic development board of Howard County\, MD.\n\nShe holds a Ph.D in Electrical Engineering from the University of Maryland College Park and enjoys mentoring women and high school students in STEM in her spare time. She lives in Maryland with her husband and her two sons. \nClick Here to register for the October ISSA Central MD Monthly Meeting URL:https://issa-centralmd.org/calendar/membership-meeting-10-23-2024/ LOCATION:Stumpy’s Hatchet House\, 6695 Dobbin Rd\, Columbia\, MD\, 21045\, United States CATEGORIES:Meetings END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20240925T170000 DTEND;TZID=America/New_York:20240925T190000 DTSTAMP:20260418T094645 CREATED:20231115T232957Z LAST-MODIFIED:20240925T223426Z UID:9066-1727283600-1727290800@issa-centralmd.org SUMMARY:Membership Meeting 09/25/2024 DESCRIPTION:Chapter Business Meeting Slides: September Membership Meeting Slides \nSpeaker Slides: Securing E-Voting \nNew Sponsor Slides: Sealing Tech \nTopic: Securing Democratic Elections to Protect E-Voting System via Cryptography in the United States \nElectronic voting was proposed as an alternative and more reliable solution to the traditional voting system in the United States. Early efforts to integrate the old system into the new voting system consisted of various challenges. For instance\, attackers\, manipulators\, or other criminal groups can collaborate with corrupt politicians and election officers who have falsified scores. Therefore\, researches of various scholars were examined towards designing a highly secured e-voting system that would prevent hackers\, corrupt politicians\, and election officers from leveraging any form of fraudulent activities. The world cannot be a credible place without trustful elections to do anything (Adekunle et al\,2020). The purpose of this paper is to review the literature from different scholars and identify shortcomings in designing highly secured cryptographic methods to focus on current practices and future considerations of the United States e-voting system. \n\nSpeaker: Ekrem E Emeksiz\, Graduate Assistant\, Cyber Forensics MS Program\, University of Baltimore \nEkrem Ersen Emeksiz was born in Turkiye in 1980\, graduated from Turkish Police Academy in 2001\, served as law enforcement administrator in 15 years focused on counterterrorism\, cyber crimes and state security. Worked 3 years at Turkish Consulate General in New York as a Security Attache. Then he obtained his master`s degree from John Jay College of Criminal Justice International Crime and Justice MA program\, now working as a graduate assistant and grad student at the University of Baltimore Cyber Forensics program\, recently approved his green card application due to United States National Interest on Cybersecurity and counterterrorism (EB-2). Ekrem is married and has two children. In a nutshell 20+years of field\, research\, teaching and management experience in policing\, counterterrorism\, conflict resolution\, risk & crisis management\, cybersecurity\, digital rights management (DRM)\, intellectual property rights and trademark law. Currently conducts vulnerability analysis\, cybersecurity awareness training\, cyber auditing\, SOC 1 \, GRC and DFIR. \n  URL:https://issa-centralmd.org/calendar/membership-meeting-09-25-2024/ LOCATION:Stumpy’s Hatchet House\, 6695 Dobbin Rd\, Columbia\, MD\, 21045\, United States CATEGORIES:Meetings END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20240828T170000 DTEND;TZID=America/New_York:20240828T190000 DTSTAMP:20260418T094645 CREATED:20231115T232734Z LAST-MODIFIED:20240929T021123Z UID:9064-1724864400-1724871600@issa-centralmd.org SUMMARY:Membership Meeting 08/28/2024 DESCRIPTION:Chapter Business Meeting Slides: August Membership Meeting Slides \n\nSpeaker Slides: 2024-08-28: Midwest Meets Middle East \n\nTopic: Midwest To The Middle East: Targeted Security Program Tips for an Evolving Cyber Battlefield \nNick Oles is a cybersecurity professional\, published author\, and veteran of the cyber and special operations communities. He’s collected tips and tricks to help your program hits its mark and actually manages risk. In this talk he’ll share actionable advice applicable to programs of all shapes and sizes that can help take you to next level. Attend this talk\, steal some ideas\, and be a genius at your next meeting. \n\nSpeaker: Nick Oles \nNick Oles is a cybersecurity expert with over 15 years of operational experience in military\, industry\, and academic environments. He has worked on incident response and threat hunting teams and consulted with Fortune 150 organizations\, small businesses\, and US Department of Defense entities. Nick has served his country for over a decade in the cyber and special operations communities\, earning multiple military accolades\, completing worldwide deployments\, and serving in joint special operations environments. He has advised award-winning academic centers on cyber-program development and management\, as well as created and taught academic and certification courses on a variety of cybersecurity topics. Nick has detected\, analyzed\, and responded to thousands ofsecurity incidents over his career. He continues to actively contribute to the cybersecurity community and teach students at all skill levels while still serving his country. \nClick Here to register for the August ISSA Central MD Monthly Meeting\n  URL:https://issa-centralmd.org/calendar/membership-meeting-08-28-2024/ LOCATION:Stumpy’s Hatchet House\, 6695 Dobbin Rd\, Columbia\, MD\, 21045\, United States CATEGORIES:Meetings END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20240724T170000 DTEND;TZID=America/New_York:20240724T190000 DTSTAMP:20260418T094645 CREATED:20231115T232527Z LAST-MODIFIED:20240731T202730Z UID:9062-1721840400-1721847600@issa-centralmd.org SUMMARY:Membership Meeting 07/24/2024 DESCRIPTION:Chapter Business Meeting Slides: July Membership Meeting Slides \nSpeaker Slides: 2024-07-24 Zero Trust At Home \nTopic:Securing Your Home Network\n \nHome users often think that their home networks are too small to be at risk of a cyberattack or believe that their home devices are secure enough right out of the box. But cybersecurity threats are proliferating faster than the growth of smart home technology.  As remote and hybrid work are being normalized it is essential for cyber security professionals to begin thinking of home networks and local coffee shops in their security solutions. Join us in this insightful meeting featuring Dr. Amy Hamilton\, a cybersecurity expert with experience at the top echelons of the U.S. Government\, who will share tips and best practices on how to secure your home environment to protect yourself and your family from cyber threats using the principles of zero trust.  \n\nSpeaker: Amy Hamilton\, DOE\n \nAmy Hamilton\, PhD\, is an award-winning public speaker who with wide international experience.  While in the US Army Officer Signal Corps\, she served in the US European Command\, the US Northern Command\, and North American Aerospace Defense Command (NORAD). She later served two years as a senior cyber security policy analyst at the Office of Management and Budget\, and as the Senior Cyber Security Advisor for the Department of Energy. She is currently a visiting faculty chair to the Department of Defense National Defense University\, College of Information and Cyberspace.  \n  URL:https://issa-centralmd.org/calendar/membership-meeting-07-24-2024/ LOCATION:Stumpy’s Hatchet House\, 6695 Dobbin Rd\, Columbia\, MD\, 21045\, United States CATEGORIES:Meetings END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20240626T170000 DTEND;TZID=America/New_York:20240626T190000 DTSTAMP:20260418T094645 CREATED:20231115T232244Z LAST-MODIFIED:20240626T021846Z UID:9060-1719421200-1719428400@issa-centralmd.org SUMMARY:Membership Meeting 06/26/2024 DESCRIPTION:Chapter Business Meeting Slides: 2024-06-26-Meeting-Presentation \nSpeaker Slides: CSAIC DoD Information Analysis Centers \nTopic: DoD Information Analysis Centers \nThe DoD Information Analysis Centers are comprised of the Defense Systems (DSIAC)\, Homeland Defense & Security (HDIAC)\, and the Cybersecurity and Information Systems Information Analysis Centers (CSIAC). This session will discuss services available to federal government users and their contractors to foster collaboration and innovation across departments.   \nIn this session will cover:    \n\nTechnical Inquiry services  \nAccess to analysts \nSubject Matter Experts  \nResearch Digests \nVoice of the Community highlights \nState-of-the-art Reports – in depth\, peer-reviewed reports released bi-annually.  \nScientific and Technical Information Collection (Library)  \nDoD funded for government users\, including access to DTIC’s Research & Engineering Gateway. \n\n\nSpeaker: Phil Payne\, CAISC\n \nPhilip Payne is the CSIAC Technical Lead. Mr. Payne (CISSP and Security+ Certified) comes from a rich background of Cyber Security with the US Army C5ISR center (formerly CERDEC) and possesses a BS and MS in Computer Engineering from Johns Hopkins University and Polytechnic University respectively. At the C5ISR center\, he led a world class Cross Domain Solution (CDS) Lab. Within the lab\, he performed Cross Domain Solution (CDS) lab-based security assessments on Army CDSs going through the Secret and Below Interoperability (SABI) CDS Certification and Accreditation Approval process. He was a key member of the INFOSEC Branch\, which has made a myriad of contributions in the Cyber Space for the DoD at large. At SURVICE Engineering he served as a vital member of the Cyber R&D team as Senior Cyber Security Engineer supporting the Data Analysis Center (formerly AMSAA) on early acquisition Cyber Security Assessments for Army Systems.  URL:https://issa-centralmd.org/calendar/membership-meeting-06-26-2024/ LOCATION:Stumpy’s Hatchet House\, 6695 Dobbin Rd\, Columbia\, MD\, 21045\, United States CATEGORIES:Meetings END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20240522T170000 DTEND;TZID=America/New_York:20240522T190000 DTSTAMP:20260418T094645 CREATED:20231115T232040Z LAST-MODIFIED:20240522T215919Z UID:9058-1716397200-1716404400@issa-centralmd.org SUMMARY:Membership Meeting 05/22/2024 DESCRIPTION:Chapter Business Meeting Slides: 2024-05-22-Meeting-Presentation \nSpeaker Slides: Navigating the New Frontier – Penetration Testing in the AI ML Era \nTopic: Navigating the New Frontier: Penetration Testing in the AI/ML Era \n\nAs we enter a new era of technological innovation\, startups are increasingly harnessing artificial intelligence (AI)\, machine learning (ML)\, and Large/Small Language Models (LLMs/SLMs) to accelerate their application development processes. This presentation\, “Navigating the New Frontier: Penetration Testing in the AI/ML Era\,” focuses on the double-edged sword these technologies present to cybersecurity. While AI/ML can dramatically speed up development and bring sophisticated capabilities to applications\, they often do so at the expense of security\, embedding potentially severe vulnerabilities into new software. \nThe talk delves into how startups may neglect rigorous security protocols\, thereby increasing the prevalence of insecure coding practices. We will explore specific cases where the push for innovation has led to significant security oversights\, resulting in a heightened risk of zero-day vulnerabilities. The presentation will highlight the crucial role that penetration testing must play in this evolving landscape\, adapting to not only identify but also mitigate the unique vulnerabilities introduced by AI-driven development. \nAdditionally\, we will discuss the strategic importance of incorporating security at the foundational level of application design and argue for a paradigm shift in startup cultures—from a focus on speed to an equal emphasis on secure innovation. Attendees will gain insights into the complexities of securing AI/ML-driven applications and learn about the latest methodologies in penetration testing that are essential for protecting against the next generation of cyber threats. \n\n\nSpeaker: Herman Cowart\, Founder & Chief Executive Officer\, Paradoxical Security LLC \nHerman Cowart is an accomplished cybersecurity professional with over 15 years of experience in offensive security. As the Founder and owner of Paradoxical Security and Penetration Testing Program Manager as a government contractor\, he specializes in leading comprehensive Red Teaming and penetration testing programs for network\, web applications\, and many other forms of offensive security. His expertise extends to developing custom security tools in Python\, C\, C++\, C#\, and Assembly\, as well as mentoring a robust team to effectively identify and mitigate zero day vulnerabilities. \nWith a distinguished military background in the U.S. Army’s Information Technology sector\, Herman brings a strategic and tactical approach to cybersecurity. He holds many GIAC certifications such as the Mobile Device Security Analyst \, Certified Penetration Tester\, and Web Application Penetration Tester and has been recognized with awards such as the Presidential Service Badge in support of the White House Communications Agency. Herman is passionate about technology and is committed to fostering knowledge through his work at Paradoxical Security\, and his various community-engaged tech projects. URL:https://issa-centralmd.org/calendar/membership-meeting-05-22-2024/ LOCATION:Stumpy’s Hatchet House\, 6695 Dobbin Rd\, Columbia\, MD\, 21045\, United States CATEGORIES:Meetings END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20240424T170000 DTEND;TZID=America/New_York:20240424T190000 DTSTAMP:20260418T094645 CREATED:20231115T231845Z LAST-MODIFIED:20240424T221236Z UID:9056-1713978000-1713985200@issa-centralmd.org SUMMARY:Membership Meeting 04/24/2024 DESCRIPTION:Chapter Business Meeting Slides: Membership Meeting 04-24-2024 \nTopic: Federal Government Proposed Cybersecurity Regulations and False Claims Risks \nAre you aware of the cybersecurity regulations proposed by the Federal Government? As more businesses shift towards digital operations\, it’s crucial to stay informed about the evolving cybersecurity landscape. In addition to protecting your business from cyber threats\, failing to comply with these regulations could also put you at risk of facing false claims allegations. Let’s learn more about this important topic together. \nThis session will include an overview of the CMMC rule\, the proposed FAR rule for Software Bill of Materials (SBOMs)\, FedRAMP equivalency requirements for contractors\, and the potential consequences of False Claims Act. \n\nSpeaker: Dawn Greenman\, Program Manager for Cybersecurity Compliance and Supply Chain Risk Management (C-SCRM). Johns Hopkins Applied Physics Laboratory (APL) \nDawn Greenman is the Program Manager for Cybersecurity Compliance and Supply Chain Risk Management (C-SCRM) for Johns Hopkins Applied Physics Laboratory (“APL”).  Ms. Greenman oversees the cybersecurity compliance strategy across the organization to ensure APL can meet its information technology mission needs.  Ms. Greenman is a subject matter expert in the federal regulations to protect controlled unclassified information. She is a trusted partner to government and to industry. In her role as program manager\, Ms. Greenman supports sponsor work related to the design and implementation of the new Department of Defense cybersecurity program\, Cybersecurity Maturity Model Certification (CMMC). Further\, she leads working groups with peer organizations to collaborate on cybersecurity threats\, risks and compliance while identifying ways to improve cybersecurity of small-to-medium businesses in the defense industrial base. \nPrior to her 18-year tenure at APL\, Ms. Greenman held a variety of Information Technology positions with small to medium businesses where she drove organizational change through the use of information technology. She has designed and delivered data centers\, implemented major ERP systems\, assured information technology compliance with Sarbanes Oxley\, and built world class Help Desk teams. \nDawn holds an undergraduate degree in Information Systems with a concentration in Homeland Security and an Executive Masters of Business Administration from The University of Maryland Robert H. Smith School of Business.  She is a Certified Information Security Professional (CISSP) and holds the GIAC Security Essentials (GSEC) certification. URL:https://issa-centralmd.org/calendar/membership-meeting-04-24-2024/ LOCATION:Stumpy’s Hatchet House\, 6695 Dobbin Rd\, Columbia\, MD\, 21045\, United States CATEGORIES:Meetings END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20240327T170000 DTEND;TZID=America/New_York:20240327T190000 DTSTAMP:20260418T094645 CREATED:20231115T231708Z LAST-MODIFIED:20240327T214740Z UID:9054-1711558800-1711566000@issa-centralmd.org SUMMARY:Membership Meeting 03/27/2024 DESCRIPTION:Chapter Business Meeting Slides: 2024-03-27 Meeting Presentation \nTopic: Advanced Degrees in Cyber \nHave you ever thought about advanced degrees in cyber but thought\, there’s no way you have time\, or that it will be way too difficult with a demanding full time job? Yeah\, me too.  Hear about the upside\, downside\, and my research experience so far as I make progress toward identifying my dissertation topic. Interested in the path that led me here? We can talk about that too. As a volunteer career coach in the community\, I enjoy answering questions and helping others come up with ideas of what could be next for them in their cyber career path. I hope to not only share some about my experience but to help with questions you might have for your cyber career. \n\nSpeaker: Jennifer Havermann\n \nJennifer Havermann is a senior technical leader with over 35 years of experience in the Intelligence\, Defense\, and Federal sectors\, in a variety of both civilian and industry roles. Her career spans technical and business roles in cyber and intelligence for multiple market leaders\, small business\, U.S. Department of Education\, Department of Defense\, and the National Security Agency. She currently serves with the National Security Agency\, focused on technology and mission enablement. She holds a Bachelor of Science in Information Assurance\, Network Engineering Certificate\, MBA\, and is currently in a Doctoral program focused on cyber. She maintains Certified Information System Security Professional (CISSP) and Certified Ethical Hacker (C|EH) certifications. She is one of the highlighted cyber professionals in the book\, “Tribe of Hackers” and is often found volunteering in the cyber community. Jen has volunteered as a Career Coach over the last 10 years in a combination of DEFCON and BSides career tracks. \n  URL:https://issa-centralmd.org/calendar/membership-meeting-03-27-2024/ LOCATION:MIC – Maryland Innovation Center\, 6751 Columbia Gateway Dr\, Columbia\, 21046 CATEGORIES:Meetings END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20240124T170000 DTEND;TZID=America/New_York:20240124T190000 DTSTAMP:20260418T094645 CREATED:20231115T231340Z LAST-MODIFIED:20240219T024459Z UID:9050-1706115600-1706122800@issa-centralmd.org SUMMARY:Membership Meeting 01/24/2024 DESCRIPTION:Chapter Business Meeting Slides: 2024-01-24 Meeting Presentation\n \nSpeaker Slides: Privacy and Law\n \nTopic: PRIVACY AND THE RULE OF LAW IN THE DIGITAL AGE \nHave you ever had the microphone on your cell phone turn on\, by itself\, when you’re having conversations\, or\, review your tax transcripts and see that someone has electronically sent forms to your tax account\, or\, been told by a credit company that they were closing your accounts based on false\ninformation provided by a credit reporting bureau – only for the credit reporting bureau to say they never sent that information\, or learn that a government agency provided personal and private information about you to another entity? Well\, I have. After becoming a Whistleblower\, I experienced these and\nmany other acts that I believe were in response to me being a Whistleblower. For each of these events to occur\, I believe that my right to Privacy and the Rule of Law had to be violated. How does Democracy survive when these types of Technology and Cybersecurity threats are allowed and there are no laws or rules in place to hold people accountable. Technology is advancing rapidly; the law and policy aren’t. Not only do Cybersecurity and Privacy field experts need to be aware of the various techniques available that can be used to violate our Constitutional Right to Privacy\, and stress the Rule of Law\, but so do everyday citizens. If we\, US Citizens\, do not make IT and government officials aware of these evolving threats\, no one will be protected. My experience as a whistleblower has opened my eyes to these items. \n\nSpeaker: Danielle Spencer \nDanielle Spencer\, author\, protector of freedom\, a privacy rights Advocate\, and U.S. Federal Government whistleblower. I am a senior leader with over 20 years of experience focused on business\, finance\, and acquisition management. I am a change agent\, transforming and improving business operations and processes. I have two Masters degrees in Business Administration and Information Systems\, and a Bachelor of Science degree in Medical and Research Technology and am certified in Information Assurance (cybersecurity) and Project Management. URL:https://issa-centralmd.org/calendar/membership-meeting-01-24-2024/ LOCATION:MIC – Maryland Innovation Center\, 6751 Columbia Gateway Dr\, Columbia\, 21046 CATEGORIES:Meetings END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20231213T170000 DTEND;TZID=America/New_York:20231213T193000 DTSTAMP:20260418T094645 CREATED:20230904T035955Z LAST-MODIFIED:20231215T031123Z UID:7982-1702486800-1702495800@issa-centralmd.org SUMMARY:Membership Meeting 12/13/2023 DESCRIPTION:Chapter Business Meeting Slides: 2023-12-13 Meeting Presentation \nSpeaker Slides: Maryland: Economics of Cyber Conferences \nTopic: Attending Cybersecurity Events \n\nThe Maryland Department of Commerce is involved in shaping the cybersecurity industry within the state. As a leader in the cyber community at the Maryland Department of Commerce\, I promote\, attract\, and support Maryland technology companies through participation in conferences at the local\, national\, and international levels. In my presentation\, I will discuss the economic advantages and opportunities resulting from attending cybersecurity events such as BlackHat\, DefCon\, and InfoSec Europe. \nSpeaker: Kimberly Mentzell\, Director for Cybersecurity and Aerospace at the Maryland Department of Commerce. \nKimberly has worked in the technology field for over twenty years as an educator and professional in cybersecurity\, networking\, Linux\, and programming. She held positions as a cyber program manager\, IT manager\, network administrator\, technology coordinator\, programmer\, and auditor. She maintains several industry certifications\, as well as teaches at the collegiate level at Capitol Technology University and Frederick Community College. Kimberly serves as a member of the Maryland Cybersecurity Council\, the Maryland Cyber Coordinating Council\, and as the co-chair for the MD Cyber Education Committee in conjunction with the MD Center for Computing Education (MCCE) Steering Committee. In addition\, she serves as a founding/executive board member of the Capitol Technology University Center for Women in Cyber. She is also a member of the Computer Science Teachers Association (CSTA)\, Women in Cybersecurity (WiCys)\, Cybersecurity Association of Maryland (CAMI)\, Maryland Tech Council\, TechFrederick Advisory Board\, and Ethical Hacking Council Advisory Board. Recently\, she received the FISSEA Innovator of the Year Award from NIST for her contributions to cyber education and was inducted into the Order of Thor by the Military Cybersecurity Professionals Association. In addition\, she is also an active attendee and/or speaker at many local\, national\, and international cybersecurity conferences and events such as DefCon\, BlackHat\, RSA\, BSides\, and InfoSec – Europe. URL:https://issa-centralmd.org/calendar/membership-meeting-12-20-2023/ LOCATION:MIC – Maryland Innovation Center\, 6751 Columbia Gateway Dr\, Columbia\, 21046 CATEGORIES:Meetings ORGANIZER;CN="ISSA Central MD Chapter":MAILTO:V_P_Operations@issa-centralmd.org END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20231115T170000 DTEND;TZID=America/New_York:20231115T190000 DTSTAMP:20260418T094645 CREATED:20230319T210114Z LAST-MODIFIED:20231120T161306Z UID:6922-1700067600-1700074800@issa-centralmd.org SUMMARY:Membership Meeting 11/15/2023 DESCRIPTION:Click Here to register for the November 15\, 2023 ISSA Membership Meeting \nChapter Business Meeting Slides: November 15\, 2023 Membership Meeting Presentation \nSpeaker Slides: Public Private Partnerships \n\nTopic: Importance of Public Private Partnerships in Cybersecurity \nPrivate public partnerships for cybersecurity issues have become more important than ever over the last few years. \n\nAs cyber threat actors increase their efforts against private and public industry alike\, correlating all information to help secure corporate and government networks and help posture defensively is the key. \n\nSpeaker: Lorri Janssen-Anessi\, BlueVoyent\nHi\, I am Lorri Janssen-Anessi\, currently the Director of External Cyber Assessments. I am a STEM advocate\, volunteer coding teacher\, lifelong learner\, and lover of all things cybersecurity! I grew up in the Bay Area in Cupertino California. Instead of working at a one of the prevalent tech companies in the areas like many of my peers\, I joined the US Air Force.\n\nAfter enlisting\, I spent 20+ years working primarily in the public sector. My career in the US Air Force started as a technical language analyst working on one of the US government’s highest priority missions\, counter-terrorism\, after 9/11. As national priorities evolved and cyber attacks became more pervasive\, my role shifted to work in the Cyber Security Mission at the National Security Agency\, an organization that was truly a pioneer in the field of cybersecurity. \nFinding this new field to be extremely rewarding it kick-started my passion for all things technology and cyber-related. While working in this mission\, the need for more traditional education in this field became evident so I enrolled and successfully completed a master of Electrical and Computer Engineering\ at the Naval Postgraduate School. This was a challenging program that provided the necessary skills to help me have impactful contributions to the National Cybersecurity mission. It also highlighted the need to foster passion and interest in STEM for women\, minorities\, and the next generation\, which were and continue to be grossly underrepresented in this field. \nMy path to cybersecurity was not traditional\, so hopefully I am an example of how it is possible to get into a technical field with a little curiosity and interest\, some effort\, and bit of traditional and non-traditional training. I will continue to strive to share as much information and insight on STEM and cybersecurity to hopefully instill a bit of passion for these fields. \nClick Here to register for the November 15\, 2023 ISSA Membership Meeting URL:https://issa-centralmd.org/calendar/membership-meeting-11-15-2023/ LOCATION:MIC – Maryland Innovation Center\, 6751 Columbia Gateway Dr\, Columbia\, 21046 CATEGORIES:Meetings ORGANIZER;CN="ISSA Central MD Chapter":MAILTO:V_P_Operations@issa-centralmd.org END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20231025T170000 DTEND;TZID=America/New_York:20231025T193000 DTSTAMP:20260418T094645 CREATED:20230319T205218Z LAST-MODIFIED:20231115T224307Z UID:6918-1698253200-1698262200@issa-centralmd.org SUMMARY:Membership Meeting 10/25/2023 DESCRIPTION:Chapter Business Meeting Slides: October 25\, 2023 Membership Meeting Presentation \nSpeaker Slides: When disaster strikes \nTopic: When disaster strikes… what you can do to prepare until help arrives.  \n\nA police officer is many things in one. At times a police officer must be a peacekeeper\, a counselor\, an enforcer\, and a life saver. All these jobs carry the responsibility of knowledge in all fields. A police officer must understand mental health issues\, information security\, local and state laws\, criminal and civil laws\, and emergency medicine. A police officer is the first person to arrive in an emergency and must act quick and efficiently. Many police officers obtain specialties that further advance them toward solving problems. Teresa specialties are aimed a lifesaving operations and preservation of life after disaster strikes. \nSpeaker: Teresa Murphy\, Prince George’s County Police Department \nTeresa Murphy is an eleven-year veteran of Prince George’s County Police. She received a bachelor’s degree in business and accounting from the University of New Mexico and has continued studies in disaster preparedness online from various universities and FEMA instructions. Her current field placement is a Sergeant of Shift 5 in Bowie\, Maryland. She is interested in community relations and disaster recovery/ preparation. She is highly trained in special operation techniques to include Swift Water Advanced Rescue\, Certified Bomb Technician\, Radiation Detection\, Civil Disturbance Level 1\, Crash Reconstruction Levels 1\,2\, and 3\, and is an FAA certified UAS Remote Pilot. She recently completed Incident Command Systems 400 that deals with large scale natural disaster recovery.. \n  URL:https://issa-centralmd.org/calendar/issa-central-md-cybersecurity-conference/ LOCATION:MIC – Maryland Innovation Center\, 6751 Columbia Gateway Dr\, Columbia\, 21046 CATEGORIES:Meetings ORGANIZER;CN="ISSA Central MD Chapter":MAILTO:V_P_Operations@issa-centralmd.org END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20230927T170000 DTEND;TZID=America/New_York:20230927T190000 DTSTAMP:20260418T094645 CREATED:20230218T041635Z LAST-MODIFIED:20230927T215625Z UID:6660-1695834000-1695841200@issa-centralmd.org SUMMARY:Membership Meeting 9/27/2023 DESCRIPTION:Chapter Business Meeting Slides: September 27\, 2023 Membership Meeting Presentation \nSpeaker Slides: Crime Lab Presentation ISSA Central MD \n\nTopic: What’s it like to work in a Crime Lab?  \nWe have all seen Crime Lab technicians on television shows such as NCIS and CSI analyzing evidence to try solve crimes.  How accurate is television’s portrayal? Hear from experts who work for the Baltimore City Police Department about what they do to analyze and assess evidence.  Learn about what tools and techniques are being used to fight crime.  What training does it take to do this type of work?  Be able to tell your friends if what they are watching on television is the way it really is! \nSpeaker:  Nicole Belle & Kieu P. Danh\, Crime Scene Sciences Section\, Baltimore Police Department\n\nThis meeting features two representatives from the Baltimore Police Department Forensic Science and Evidence Management Division.  Nicole Belle is a Crime Laboratory Technician Supervisor.  She began her career in Forensics in 2017\, starting in the Crime Scene Unit as a Crime Laboratory Technician working and processing hundreds of crime scenes.  She received her Master of Science in Forensic Science from National University and her Bachelor of Science in Forensic Chemistry and Chemistry from Towson University.  Kieu P. Danh became a Crime Laboratory Supervisor in June 2023 and started with the Division in 2018.  She a brief tour in the Carroll County Sheriff’s Office Criminal Investigation Unit.  She earned her Master of Science and his Bachelor of Science in Criminal Justice December from the University of Baltimore. URL:https://issa-centralmd.org/calendar/membership-meeting-9-27-2023/ LOCATION:MIC – Maryland Innovation Center\, 6751 Columbia Gateway Dr\, Columbia\, 21046 CATEGORIES:Meetings ORGANIZER;CN="ISSA Central MD Chapter":MAILTO:V_P_Operations@issa-centralmd.org END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20230823T170000 DTEND;TZID=America/New_York:20230823T190000 DTSTAMP:20260418T094645 CREATED:20230218T041410Z LAST-MODIFIED:20230830T004336Z UID:6658-1692810000-1692817200@issa-centralmd.org SUMMARY:Membership Meeting 8/23/2023 DESCRIPTION:Chapter Business Meeting Slides: August 23\, 2023 Membership Meeting\nSpeaker Slides: Jeffrey Wheatman Teaching AI\nTopic: Can We Teach an AI to Speak Fluent Cybersecurity \nHow do you know if your AI really understands cybersecurity? Too many compliance tools claim that they use AI for text processing but fail to deliver on their promises. Can we really give an AI a CISSP? Can we trust AI with our cybersecurity? Yes\, AI is useful and valuable\, but it won’t fix everything. We need to be clear about what AI can and cannot do. One thing we can say for sure (well\, pretty sure) – AI will never replace the human element of cybersecurity. Is the future of cybersecurity people being replaced by AI?This presentation will delve into the three elements to AI that need to be explored: \n\nBusiness systems are using AI; What are the implications to your cybersecurity defenses?\nAI is being used by attackers too!\nThe market is filled with companies\, platforms and tools that all have AI\, ML\, and other terms sprinkled throughout their marketing literature – but what does it all mean?\n\nWe will explore how smart (or dumb) are AIs in cybersecurity in today’s AI-centric world. \nSpeaker: Jeffrey Wheatman\, SVP\, Cyber Risk Evangelist\, Black Kite\nA strategic thought leader with extensive expertise in security and cyber risk management\,Jeffrey Wheatman is regarded as a foremost expert in guiding public sector clients and Fortune 500 companies in connection with their cybersecurity and risk management programs. Jeffrey’s history of working with clients to plan\, grow\, and transform their cyber risk management programs has been instrumental in ensuring organizations continued viability and health as they define short- and long-term expansion plans. Under Jeffrey’s guidance\, board and C-level leaders are fortified with the best practice solutions to realize exceptional performance outcomes.In his current capacity as SVP\, Cyber Risk Evangelist at Black Kite\, Jeffrey has been tasked with raising awareness of the enterprise-wide risk impacts of third party risk\, both in the digital and traditional supply chain and supporting the strategic vision of the executive leadership team and investors.Most recently\, Jeffrey acted as a VP\, Advisor with Gartner\, the global strategic advisory firm\, where he worked with clients to build and improve their security programs\, assess risk\, focus on reporting on program status\, metrics\, performance management\, stakeholder engagement\, executive communication\, and bridging the connection between technology and security risk.Jeffrey guided leaders in selecting frameworks to run cyber programs in compliance with regulatory requirements and expectations of auditors and partners. Jeffrey has extensive experience engaging with executive leaders and board members. Jeffrey has prepared security and risk leaders to present before a board; he has reviewed and advised on upwards of 500 board presentations and briefed 60+ boards of directors to understand their role in managing cyber risk.For four years\, Jeffrey served as the Chair of the North America Security and Risk Management Summit\, Gartner’s 2nd largest conference with 4000+ annual attendees. As part of this high- profile effort\, he guided the creation of the conference agenda comprising more than 150 presentations\, 20 case studies\, external keynote speakers\, and 50 vendor sessions. URL:https://issa-centralmd.org/calendar/membership-meeting-8-23-2023/ LOCATION:Convergint | Federal\, 6650 Eli Whitney Dr\, Suite 400\, Columbia\, MD\, 21046\, United States CATEGORIES:Meetings ORGANIZER;CN="ISSA Central MD Chapter":MAILTO:V_P_Operations@issa-centralmd.org END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20230726T170000 DTEND;TZID=America/New_York:20230726T190000 DTSTAMP:20260418T094645 CREATED:20230218T041031Z LAST-MODIFIED:20230726T215531Z UID:6656-1690390800-1690398000@issa-centralmd.org SUMMARY:Membership Meeting 7/26/2023 DESCRIPTION:Chapter Business Meeting Slides: 2023-07-26 Meeting Slides \nSpeaker Slides: Universal Cyber Intelligence Briefing \nNew Cybersecurity Policy Considerations — Distribution Copy \n\nTopic: Wide World of Cyber \nThe need to validate that cybersecurity policies and procedures remain sufficient (or if not are updated/revised/expanded as needed) to appropriately protect the organization relative to new and emerging risks that emanate from new technologies\, operational paradigm shifts\, and a continually evolving threat landscape.  This list includes: \n\nOperations Technology (OT) & Internet of Things\nArtificial Intelligence /Machine Learning\nCloud Computing/Shared Public Infrastructure (including Global Communications)\nQuantum Computing\nBlockchain\n5G Networks / Smart City Infrastructure\nReturn to Office (RTO)\nAugmented Reality / Virtual Reality\nBiometric Authentication\nAutonomous Vehicles\nWearable Technology\nDrones\nSmart Homes\n\nSpeaker: Jason Taule\, Cyber Advisory Council Chair and CISO-In-Residence\, of the Maryland Innovation Center (MIC)\n\nJason Taule is a 30+ year information assurance and cybersecurity veteran who has worked in both the intelligence community and commercial sectors first consulting to Federal agencies and then serving as inside CISO and CPO both within Government and at large systems integrators like General Dynamics and CSC. \nMr. Taule helped build the original DARPA CERT\, helped develop the first computer security programs at the VA and NASA\, and revised the Risk Assessment Methodology still used throughout the Federal Government. Mr. Taule helped author the Maryland Data Privacy Law\, led a multi-million-dollar global cyber security practice for a large international consulting firm\, ran the team responsible for HIPAA complaint investigations for OCR for 3 years\, and for the last 20 years has been a luminary in the US Health IT sector helping hundreds of systems earn their accreditations and avoid compromise. Mr. Taule previously served as the inside CISO and VP of Standards for HITRUST\, where he was responsible for developing and maintaining the Common Security Framework (CSF). \nMr. Taule currently serves as the Cyber Advisory Council Chair and CISO-In-Residence\, of the Maryland Innovation Center (MIC)\, an advanced business incubator helping companies in the greater Washington-Baltimore metroplex start and grow. In this capacity\, Mr. Taule oversees and directs the cyber activities in which the MIC engages. This includes developing and providing assessment\, training\, and enhancement programs designed to help residents and affiliates understand\, build\, and maintain programs of cyber hygiene\, developing content and cultivating partnerships and support services to recognize trends and respond to emerging threats\, and serving in an CISO advisory capacity with respect to fulfilling customer assurance and regulatory mandates\, meeting cyber requirements necessary to raise investment capital\, and managing risk to achieve maximum exit valuation. URL:https://issa-centralmd.org/calendar/membership-meeting-7-26-2023/ LOCATION:MIC – Maryland Innovation Center\, 6751 Columbia Gateway Dr\, Columbia\, 21046 CATEGORIES:Meetings ORGANIZER;CN="ISSA Central MD Chapter":MAILTO:V_P_Operations@issa-centralmd.org END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20230628T170000 DTEND;TZID=America/New_York:20230628T190000 DTSTAMP:20260418T094645 CREATED:20230218T040343Z LAST-MODIFIED:20230628T222309Z UID:6646-1687971600-1687978800@issa-centralmd.org SUMMARY:Membership Meeting 6/28/2023 DESCRIPTION:Chapter Business Meeting Slides: 06-28-2023 Meeting Slides \nTopic: Cybersecurity Maturity Model Certification (CMMC)  \n\nDoD’s Cybersecurity Maturity Model Certification (CMMC) Program was designed to provide increased assurance to the DoD that a DIB contractor can adequately protect sensitive unclassified information (i.e.\, FCI and CUI) at a level commensurate with the risk\, and accounting for information flow down to its subcontractors in a multi-tier supply chain.  CMMC was initially implemented as an interim DFARS rule in September 2020 (DFARS Case 2019-D041).  In March 2021\, in response to over 850 public comments\, the program was modified and streamlined to CMMC 2.0.  The revised CMMC Program aligns with existing cybersecurity models. Once implemented through the rulemaking process\, when applicable through acquisitions vehicles\, CMMC requirements will be required for prime contractors and their subcontractors. While the rule is being finalized\, it is important to continue to prepare now!  Come learn more about CMMC 2.0 and recommended next steps. \nSpeaker: Dawn M Greenman\, Program Manager Cybersecurity Compliance for Johns Hopkins Applied Physics Laboratory (JHU/APL)\n\nDawn M Greenman is Program Manager Cybersecurity Compliance for Johns Hopkins Applied Physics Laboratory (JHU/APL).  In this position\, she oversees the cybersecurity compliance and supply chain risk management strategy across the organization. Since 2013\, she has ensured JHU/APL’s compliance with DFARS 7012 and NIST SP 800-171. During this time\, she developed relationships with the small business community and learned of the unique challenges small businesses had meeting the cybersecurity requirements. Ms. Greenman became an advocate for small businesses. She helps lead working groups with DoD and industry to develop strategies to help small businesses improve the protection of controlled unclassified information. \nThrough JHU/APL\, Ms. Greenman also worked for 3 ½ years with DoD CIO and DoD Office of Sustainment and Acquisition to develop and support the Cybersecurity Maturity Model Certification (CMMC) Program. \nMs. Greenman holds an undergraduate degree in Information Systems with a concentration in Homeland Security and an Executive Masters of Business Administration from The University of Maryland Robert H. Smith School Of Business.  She is a Certified Information Security Professional (CISSP) and holds the GIAC Security Essentials (GSEC) certification. URL:https://issa-centralmd.org/calendar/membership-meeting-6-28-2023/ LOCATION:MIC – Maryland Innovation Center\, 6751 Columbia Gateway Dr\, Columbia\, 21046 CATEGORIES:Meetings ORGANIZER;CN="ISSA Central MD Chapter":MAILTO:V_P_Operations@issa-centralmd.org END:VEVENT END:VCALENDAR