Cyber Resilience Summit Agenda Published for October 19

Featured speakers from DHS, NSA, DoD, Navy and Marines

 

Needham, MA – September 25, 2017 – The Consortium for IT Software Quality™ (CISQ™) today announced that the agenda is published and registration is open for its fourth annual Cyber Resilience Summit. CISQ is co-hosting this full-day event with the IT Acquisition Advisory Council (IT-AAC) at the Army Navy Club in Arlington, Virginia, on October 19, 2017.

 

The current executive agenda for Federal IT seeks to modernize legacy systems by maximizing the use of commercial innovation, commercial standards and commercial best practices. Public officials, standards bodies, IT communities of interest, and leaders from industry will discuss the digital transformation and the practical application of systems engineering to ensure success in these goals.

 

Speakers from U.S. Federal Government and industry will address how federal agencies are modernizing and securing legacy systems to combat cyber threats and improve digital services for their constituencies. Sessions include:

  • Keynote panel with Tony Scott, former Federal CIO under President Barack Obama, and Mr. Greg Smithberger, CIO and CTO of the National Security Agency
  • Keynote: Defense Cyber Way Forward by Dr. Theresa Lang, Deputy Director, Navy Cybersecurity/Deputy Director, Department of the Navy Deputy Chief Information Officer
  • Titans of Cyber Panel: Policy and Directives for Modernizing and Securing Legacy IT Topics: FITARA, MGT Act, Executive Order for Cyber Security
  • Standards to Measure and Manage Security, Resilience and Technical Debt
  • Titans of Cyber Panel: Best Practices and Innovations for Rapid, Secure Modernization
  • Supply Chain and Integration Risk Management

Confirmed speakers and panelists include:

  • Bill Curtis, Consortium for IT Software Quality Executive Director
  • John Weiler, IT Acquisition Advisory Council Vice Chair
  • Jeffrey Eisensmith, CISO, DHS OCIO
  • Sara Mosley, Acting Director for the Office of the Chief Technology Officer, DHS CS&C
  • Jack Wilmer, Cyber lead for American Technology Council, White House OSTP
  • Ken Bible, Deputy CIO, U.S. Marine Corps
  • Jose Arrieta, Director, Office of IT 70 Schedule Contract Operations at GSA
  • Brigadier General (ret) Greg Touhill, former U.S. CISO and current President of Cyxtera Federal Group
  • Matt Conner, CISO of the National Geospatial Agency
  • Emile Monette, Senior Cybersecurity Strategist and Acquisition Advisor, DHS Continuous Diagnostics and Mitigation Program
  • Shon Lyublanovits, IT Security Category Manager and Director of the Security Services Division for the Office of Integrated Technology Services in the GSA Federal Acquisition Service
  • Dave Duma, Acting Director of Operational Test & Evaluation at the Department of Defense
  • Joe Jarzombek, Global Manager, Synopsys Software Integrity Group
  • Edward E. Amoroso, CEO of Tag Cyber LLC
  • Ron Ross, Computer Scientist and Fellow, NIST
  • Roberta Stempfley, Director of SEI’s CERT Division
  • Herb Krasner, University of Texas at Austin (ret.), Texas IT Champion

 

The complete agenda and registration information is online.  Registration is open to the public and costs $250 USD. Admission for government officials and media is complimentary with pre-registration by October 18.

 

The event is sponsored by Booz Allen Hamilton, CAST, CGI, Cognizant, ISHPI Information Technologies and Synopsys.

 

About the Event Hosts

The Consortium for IT Software Quality (CISQ) is an IT industry leadership group comprised of IT executives from the Global 2000, system integrators, outsourced service providers, and software technology vendors committed to introducing computable metrics standards for measuring software quality and size. Founded by the Object Management Group (OMG®) and the Software Engineering Institute (SEI) at Carnegie Mellon University, CISQ is a neutral, open forum in which customers and suppliers of IT application software can develop an industry-wide agenda of actions for improving IT application quality and reduce cost and risk. For more information, visit www.it-cisq.org.

 

The IT Acquisition Advisory Council (IT-AAC) is a public/private “do tank” composed of leading IT public interest groups, standards bodies and government agencies working together to fundamentally transform how the government acquires and manages IT and Cyber solutions. As the “architect of FITARA”, we are ushering in agile standards of practice and innovations emanating from the $4T Global IT market. www.it-aac.org

 

###

Note to editors: Object Management Group and OMG are registered trademarks of the Object Management Group.  For a listing of all OMG trademarks, visit http://www.omg.org/legal/tm_list.htm. All other trademarks are the property of their respective owners.

CISQ Announces Cyber Resilience Summit on October 19, 2017 in Virginia

Needham, MA – September 8, 2017 – The Consortium for IT Software Quality™ (CISQ™) today announced that registration is open for the fourth annual Cyber Resilience Summit to be held at the Army Navy Club in Arlington, Virginia on October 19, 2017.

 

Federal agencies are actively modernizing and securing legacy systems to combat cyber threats and improve digital services for their constituencies. The Cyber Resilience Summit will distill standards and best practices from the cyber standards community for building and acquiring secure and resilient software. Mr. Tony Scott, former Federal CIO under President Barack Obama, and Mr. Greg Smithberger, CIO and CTO of the National Security Agency, will kick-off the program. Speakers from government and industry will cover the topics of: risk-managed digital transformation, the practical application of systems engineering to support agile acquisition, cloud readiness, big data, technical debt control, and cyber risk management of complex mission, C2, weapon and citizen-facing systems.

 

VENUE: Army Navy Country Club, 1700 Army Navy Drive, Arlington, VA

 

WHEN: Thursday, October 19, 2017 from 8:00am – 4:00pm

 

COST: Complimentary for government employees and media. Select “Special” under Payment Type and enter the code CISQGOV17 for government employees and CISQP17 for media at registration. The fee is $250USD for non-government employees. Registration includes refreshments and lunch.

 

HOSTS: Consortium for IT Software Quality in cooperation with the Object Management Group® (OMG®) and IT Acquisition Advisory Council (IT-AAC)

 

“CISQ is active in driving IT policy in state and local government,” says Dr. Bill Curtis, Executive Director, CISQ. “Code quality standards have been cited in a U.S. General Services Administration statement of work for new Information Technology and Development Services (ITDS) contracts. Herb Krasner, a member of the CISQ Advisory Board, led new Texas state legislation to improve the oversight and performance of large state IT projects (http://it-cisq.org/measuring-it-project-performances-in-texas-house-bill-hb-3275-implications/). And the U.S. State Department cited software quality requirements in a large Consular Systems Modernization project.” “We look forward to this event to connect with Federal IT leaders tasked with getting the job done right.”

 

For more on CISQ’s work, visit www.it-cisq.org/cyber-resilience.

 

About CISQ

The Consortium for IT Software Quality™ (CISQ™) is an IT industry leadership group comprised of IT executives from the Global 2000, system integrators, outsourced service providers, and software technology vendors committed to introducing computable metrics standards for measuring software quality and size. Founded by the Object Management Group (OMG®) and the Software Engineering Institute (SEI) at Carnegie Mellon University, CISQ is a neutral, open forum in which customers and suppliers of IT application software can develop an industry-wide agenda of actions for improving IT application quality and reduce cost and risk. The event is sponsored by Booz Allen Hamilton, CAST, CGI, Cognizant, Ishpi Information Technologies and Synopsys. For more information, visit www.it-cisq.org.

 

About IT-AAC

 

The IT Acquisition Advisory Council (IT-AAC) is a public/private “do tank” composed of leading IT public interest groups, standards bodies and government agencies working together to fundamentally transform how the government acquires and manages IT and Cyber solutions. As the “architect of FITARA”, we are ushering in agile standards of practice and innovations emanating from the $4T Global IT market. www.it-aac.org

 

###

Note to editors: Object Management Group and OMG are registered trademarks of the Object Management Group.  For a listing of all OMG trademarks, visit http://www.omg.org/legal/tm_list.htm. All other trademarks are the property of their respective owners.

Jaarcongres Innovatie & Transformatie hosted by ICT Media

Date: September 19, 2017

Venue: NBC Congrescentrum, Blokhoeve 1, 3438 LC Nieuwegein, Netherlands

Website: http://www.innovatietransformatie.nl/

 

Paul Bentz, CISQ Director of Government and Industry Programs, will lead a panel discussion, “Measuring software assets to support innovation: the importance of standards.”

 

 

From the ICT Media website:

 

Technological, economic and social developments demand from organizations a change force that exceeds the competences of the traditional IT department. However, the IT function can play a crucial role within the organization of the future. This calls for leadership, governance, digital, security, speed, and ecosystems. During the Annual Congress Innovation and Transformation we outline the contours of the future organization.

 

Leadership – Much more than a matter of purely technological choices, the process of digitalization is a strategic organizational issue. That requires leaders with vision, conviction and power. What are the characteristics of contemporary leadership? How can the CxO digitization shape?

 

Digital and data – More and more organizations embrace the idea of ​​data and information as the basis for digital renewal. In that, KI and robotization can not really be missed. And Block-chain is more than the underlying virtual currency system. The art is, however, individual and self-initiating initiatives in parts of a larger whole. That calls for a holistic view of digital assets. How do you get that done?

 

Security, Privacy and Compliance – Security and data privacy are important pillars of enterprise continuity. Software may contain as many vulnerabilities, human being is the weakest link in the security chain. How can organizations enforce safe work without compromising user experience and productivity?

 

Speed ​​- In order to innovate faster, more and more companies and institutions choose a bi- or even trimodal approach: In addition to traditional, operational IT, digital innovation is set apart. How far can you pass this? What is productive? Should not the ‘run’ be in the acceleration?

 

In addition to technology, innovation and transformation in the digital age thus relies on the (re) shaping of the entire organization. There is no standard model for this, but CxO’s have a range of possibilities that can be productive. The main issues are discussed during the Years of Innovation and Transformation.

 

REGISTER TODAY!

 

 

 

Gartner Application Strategies & Solutions Summit 2017

Date: December 4-6, 2017
Venue: Caesars Palace, Las Vegas, NV
Website: http://www.gartner.com/us/apps
Special rate: CISQ members save $300 off standard registration. Apply the code GARTCISQ at registration.

 

Accelerate Engagement, Drive Customer Experience and Deliver Digital Business Innovation

 

Gartner Application Strategies & Solutions Summit will address how to build an applications organization with the agility and flexibility to support today’s digital business demands. Empower your entire enterprise to address digital business opportunities and use leading-edge technologies to create and deploy business critical solutions.

 

Explore four in-depth programs tailored to the changing mission-critical priorities of application, IT and CX leaders. New this year, Gartner’s exclusive Senior Executive Circle provides a forum for best practices, strategies and tactics of forward thinking senior IT/application leaders, and offers exclusive roundtable sessions and networking opportunities.

 

2017 Agenda Programs & Themes

Additionally, explore hot topics across the event with deep-dives into cloud, advanced technologies and digital workplace.

 

CISQ members save $300 off standard registration! Apply the code GARTCISQ at registration.

 

 

 

HACK New York City 2018

 

“The most innovative and disruptive speakers”

 

The HACK NYC Executive Summit, an exclusive gathering of more than 50 top industry executives and security industry leaders, ignites open conversations and “think tank” style breakout sessions. This full day of discussions is unique to Black Hat and provides unmatched opportunities for networking and learning.

 

Click here to track the speakers

 

Click here to buy tickets

 

 

 

 

 

 

Software and Supply Chain Assurance (SSCA) Winter Forum 2017

Location: MITRE-1, 7525 Colshire Drive, McLean, VA 22102

https://register.mitre.org/ssca/

 

Cyber risk has become a topic of core strategic concern for business and government leaders worldwide and is an essential component of an enterprise risk management strategy. The Software and Supply Chain Assurance (SSCA) Forum and Working Groups provide a venue for government, industry, and academic participants from around the world to share their knowledge and expertise regarding software and supply chain risks, effective mitigation strategies, and any gaps related to the people, processes, or technologies involved.

 

The effort was initiated in 2003 as a Department of Homeland Security (DHS)-sponsored Cross-Sector Cyber Security Working Group (CSCSWG) established under auspices of the Critical Infrastructure Partnership Advisory Council (CIPAC) that provides legal framework for public-private collaboration and participation.

 

Originally called the Software Assurance (SwA) Forum and Working Groups, its purpose was to bring together a stakeholder community to protect the Nation’s key information technologies, most of which are enabled and controlled by software. The community evolved and broadened the scope to include additional focus on the supply chain and is currently co-sponsored by DHS, the Department of Defense (DoD) Office of the Secretary of Defense, Government Services Agency (GSA), and the National Institute of Standards and Technology (NIST).

 

SSCA events are held quarterly and are free and open to the public. In general, Summer and Winter sessions are intended for working group-type discussions while the Spring and Fall sessions are reserved for more traditional forum presentations. Interaction is always encouraged.

 

To receive information about upcoming meetings and related activities, please sign up for the sw.assurance mailing list, operated by NIST, by sending a blank email to sw.assurance-join@nist.gov

Software and Supply Chain Assurance (SSCA) Fall Forum 2017

Location: MITRE-1, 7525 Colshire Drive, McLean, VA 22102

https://register.mitre.org/ssca/

 

Cyber risk has become a topic of core strategic concern for business and government leaders worldwide and is an essential component of an enterprise risk management strategy. The Software and Supply Chain Assurance (SSCA) Forum and Working Groups provide a venue for government, industry, and academic participants from around the world to share their knowledge and expertise regarding software and supply chain risks, effective mitigation strategies, and any gaps related to the people, processes, or technologies involved.

 

The effort was initiated in 2003 as a Department of Homeland Security (DHS)-sponsored Cross-Sector Cyber Security Working Group (CSCSWG) established under auspices of the Critical Infrastructure Partnership Advisory Council (CIPAC) that provides legal framework for public-private collaboration and participation.

 

Originally called the Software Assurance (SwA) Forum and Working Groups, its purpose was to bring together a stakeholder community to protect the Nation’s key information technologies, most of which are enabled and controlled by software. The community evolved and broadened the scope to include additional focus on the supply chain and is currently co-sponsored by DHS, the Department of Defense (DoD) Office of the Secretary of Defense, Government Services Agency (GSA), and the National Institute of Standards and Technology (NIST).

 

SSCA events are held quarterly and are free and open to the public. In general, Summer and Winter sessions are intended for working group-type discussions while the Spring and Fall sessions are reserved for more traditional forum presentations. Interaction is always encouraged.

 

To receive information about upcoming meetings and related activities, please sign up for the sw.assurance mailing list, operated by NIST, by sending a blank email to sw.assurance-join@nist.gov

 

 

 

 

 

Cybersecurity Workshop at OMG Technical Meeting

 

Cyber threats facing an organization’s critical infrastructure, mission-critical systems, or any Industrial Internet of Things (IIoT) system, demand a cyber infrastructure that matches their combined enormity and complexity. Risk management solutions must be capable of understanding intricate attack patterns and assessing complex vulnerabilities to give stakeholders confidence in their system’s ability to withstand malicious attacks, operate as intended, and within the appropriate regulatory boundaries.

 

The OMG’s Cybersecurity Workshop on September 28, 2017 brings together practitioners developing IT standards targeted at the security engineering lifecycle and the digital transformation of business operations. Learn how to plan for, budget, and reduce costs associated with building/acquiring secure and resilient software.

 

Dr. Bill Curtis, Executive Director of CISQ, will present Code Quality Standards and Technical Debt Management.

 

This special event is part of the OMG Technical Meeting, September 25-29, 2017 in New Orleans, LA. The registration fee for the Cybersecurity Workshop is $149 and includes lunch and refreshments throughout the day. (Full meeting week registration includes the Workshop!)

 

The Workshop begins with a cybersecurity primer aimed at executive leadership, managers and engineers. The primer will cover key concepts needed to consistently apply cybersecurity processes across product lines and programs.

 

Presentations include:

  • Safe, Secure and Reliable Industrial Internet: A Standards Story – Robert A. Martin, Senior Principal Engineer, MITRE; Steering Committee Member, Industrial Internet Consortium
  • Security Views in the UAF (Unified Architecture Framework) – Matthew Hause, GTM Solutions Specialist, Fellow, PTC; Co-Chair, OMG UAF Task Force
  • Model-based Cybersecurity Assessment – Dr. Nikolai Mansourov, CTO, KDM Analytics
  • Federated Threat Analytics and Information Sharing – Cory Casanave, President and CEO, Model Driven Solutions; Co-chair, OMG Government Domain Task Force
  • Cyber Information Sharing and Safeguarding – Mike Abramson, President and CEO, Advanced Systems Management Group (ASMG Ltd.); Co-chair, OMG C4I Domain Task Force
  • Cloud Security and Data Residency Considerations – Claude Baudoin, Owner and Principal Consultant, cébé IT and Knowledge Management; Steering Committee Member, Cloud Standards Customer Council
  • Code Quality Standards and Technical Debt Management – Dr. Bill Curtis, Executive Director, Consortium for IT Software Quality (CISQ); SVP and Chief Scientist at CAST
  • Panel Discussion on Cybersecurity: Cost vs. Protection

AFCEA OKC Technology Day @ Tinker AFB

 

The AFCEA OKC Technology Day on August 17th brings together AFCEA members and Tinker AFB (Air Force Base) personnel to discuss Information Technology and Cybersecurity. View and demo some of the latest IT products from government and industry partners, attend educational sessions, and network with peers. Registration is complimentary. On Friday, August 18th, spend the day with the AFCEA OKC Chapter on the links at the Tinker Golf Course.

 

Marc Jones, Director of Federal Outreach at CISQ, will deliver a presentation:

 

Cyber and Operational Risk Standards and Policy Update.

 

International standards referenced by DOD & GSA are available now for automating the measurement of software size and structural quality (security, reliability, performance efficiency and maintainability.) Leveraging these measures in Software acquisition programs has been shown to elevate operational readiness and lower corrective maintenance cost of software-intensive IT and Mission systems. Learn how government organizations leverage these standards to quantify risk in multi-tier, multi-language systems at each software delivery to government. Explore how to use these measures in acquisition, benchmarking, vendor management and governance. Congress has mandated that all DOD programs have software measurement capability. CISQ is an acquisition ready standard.

 
CISQ is special interest group of the Object Management Group with engineering support from FFRDC’s Software Engineering Institute (SEI) and MITRE. CISQ’s work and standards are supported by DOD, GSA, NSA, NIST and DHS.

 

Attend this presentation to hear best practices for software quality measurement that can be leveraged in Tinker AFB programs.

 

 

 

Agile Dev, Better Software & DevOps East

Learn what you need to build better software now. The Agile Dev, Better Software, and DevOps East events hosted by Techwell are co-located from November 5-10, 2017 in Orlando, FL.  With over 100 learning and networking sessions, there will be a wide variety of new things to learn:

  • Projects and teams
  • Personal excellence
  • Going mobile
  • Business analysis and requirements
  • Internet of Things (IoT)
  • Process and metrics
  • Leadership
  • Software quality and testing

 

One registration gives you access to all three of these industry-leading events.

 

Register by October 6 using CISQ’s special promo code CECM to save up to an additional $200 off. Plus, this offer can be combined with early bird pricing for even more savings.

 

CLICK HERE TO LEARN MORE & REGISTER!