Loading Events

« All Events

  • This event has passed.

Membership Meeting 05/23/2018

May 23, 2018 @ 5:00 PM - 7:30 PM

Monthly ISS Meeting Slides: Click Here

Speaker Slides: Risk Management Framework 2.0

Title: Risk Management Framework Version 2.0

The NIST special publication on RMF was updated in September.  We will see how 800-37 can be used a blue print. RMF promotes the concept of near real-time risk management and ongoing system authorization through the implementation of continuous monitoring processes; provides senior leaders and executives with the necessary information to make cost-effective, risk management decisions about the systems supporting their missions and business functions; and integrates security and privacy controls into the system development life cycle. Applying the RMF tasks enterprise-wide helps to link essential risk management processes at the system level to risk management processes at the organization level.

Speaker: Tom Volpe Sr., CEO of Volpe Information Technology Group

With over 26 years of commercial industry and governmental experience in information security, software assurance and development, network systems security, project and program management, secure application development, system engineering and testing, a B.S. degree in computer science from Loyola College in Baltimore, and specialized experience in secure application development. Mr. Volpe has performed efforts that focused on ensuring the confidentiality, integrity, and availability of systems, networks, and data through the planning, analysis, development, implementation, maintenance, and enhancement of information systems security programs, policies, procedures, and tools. As a Risk Analyst and Sr. Security Assessment and Authorization (SA&A) Principal on various projects, Mr. Volpe has excelled in security package preparation and review process for many government and commercial clients. Mr. Volpe has lead multiple software security assurance efforts at various government agencies and produced developer-oriented process frameworks for integrating secure code review scanning and analysis into the systems development lifecycle.



May 23, 2018
5:00 PM - 7:30 PM