[May] Chapter Meeting-Systems Security Engineering: The Path to More Trustworthy and Resilient Systems – Dr. Ron Ross

Presented by Dr. Ron Ross, Fellow, National Institute of Standards and Technology (NIST) Thursday, May 19, 2016 at 5:30 PM – Networking and Dinner;  6:00 – 6:30 PM MACH37 Presentations;  6:30 – 8:00 PM – Program.
This session addresses the engineering-driven actions necessary for developing a more defensible and survivable information technology infrastructure—including the component products, systems, and services that compose the infrastructure.  NIST Special Publication 800-160, Systems Security Engineering: An Integrated Approach to Building Trustworthy and Resilient Systems, starts with and builds upon a set of well-established International Standards for systems and software engineering published by the International Organization for Standardization (ISO), the International Electrotechnical Commission (IEC), and the Institute of Electrical and Electronic Engineers (IEEE) and infuses systems security engineering techniques, methods, and practices into those systems and software engineering processes. The ultimate objective is to address security issues from a stakeholder requirements and protection needs perspective and to use established organizational processes to ensure that such requirements and needs are addressed early in and throughout the life cycle of the system.
Dr. Ron Ross is a Fellow at the National Institute of Standards and Technology (NIST).  His current focus areas include information security and risk management. Dr. Ross leads the Federal Information Security Management Act (FISMA) Implementation Project, which includes the development of security standards and guidelines for the federal government, contractors, and the United States critical information infrastructure. His recent publications include Federal Information Processing Standards (FIPS) Publication 199 (security categorization standard), FIPS Publication 200 (security requirements standard), NIST Special Publication (SP) 800-39 (risk management guideline), SP 800-53 (security and privacy controls guideline), SP 800-53A (security assessment guideline), SP 800-37 (security authorization guideline), SP 800-30 (risk assessment guideline), SP 800-160 (systems security engineering guideline), and SP 800-171 (security requirements for contractors and nonfederal organizations). Dr. Ross is the principal architect of the Risk Management Framework (RMF), a multi-tiered approach that provides a disciplined and structured methodology for integrating the suite of FISMA-related standards and guidelines into a comprehensive enterprise-wide security program. Dr. Ross also leads the Joint Task Force, an interagency partnership with the Department of Defense, the Office of the Director National Intelligence, the U.S. Intelligence Community, and the Committee on National Security Systems that developed the Unified Information Security Framework for the federal government and its contractors.

Dr. Ross previously served as the Director of the National Information Assurance Partnership, a joint activity of NIST and the National Security Agency. In addition to his responsibilities at NIST, Dr. Ross supports the U.S. State Department in the international outreach program for information security and critical infrastructure protection. He has also lectured at many universities and colleges across the country including the Massachusetts Institute of Technology, Dartmouth College, Stanford University, and the Naval Postgraduate School. A graduate of the United States Military Academy at West Point, Dr. Ross served in many leadership and technical positions during his twenty-year career in the United States Army. While assigned to the National Security Agency, Dr. Ross received the Scientific Achievement Award for his work on an inter-agency national security project and was awarded the Defense Superior Service Medal upon his departure from the agency. Dr. Ross is a three-time recipient of the Federal 100 award for his leadership and technical contributions to critical information security projects affecting the federal government and is a recipient of the Department of Commerce Gold and Silver Medal Awards. He has been inducted into the Information Systems Security Association (ISSA) Hall of Fame and given its highest honor of ISSA Distinguished Fellow. Dr. Ross has also been inducted into the National Cyber Security Hall of Fame, Class of 2015.
Dr. Ross has received numerous private sector cybersecurity awards including the Partnership for Public Service Samuel J. Heyman Service to America Medal for Homeland Security and Law Enforcement, Applied Computer Security Associates Distinguished Practitioner Award, Government Computer News Government Executive of the Year Award, Vanguard Chairman’s Award, Government Technology Research Alliance Award, InformationWeek’s Government CIO 50 Award, Billington Cybersecurity Leadership Award, ISACA National Capital Area Conyers Award, Symantec Cyber 7 Award, SC Magazine’s Cyber Security Luminaries, (ISC)2 Inaugural Lynn F. McNulty Tribute Award, 1105 Media Gov30 Award, and the Top 10 Influencers in Government IT Security. During his military career, Dr. Ross served as a White House aide and senior technical advisor to the Department of the Army. Dr. Ross is a graduate of the Defense Systems Management College and holds Masters and Ph.D. degrees in Computer Science from the U.S. Naval Postgraduate School specializing in artificial intelligence and robotics.
Location:   Marymount University Reinsch Auditorium 2807 N. Glebe Rd Arlington Virginia 22207
Note:  Parking is in the Blue garage, entrance off 26th St
Registration http://tinyurl.com/gpl746u
You must register by noon on Tuesday May 17, 2016. If not a US citizen, please provide your title, employer, and address, and allow 2 business days for registration before the meeting.
For registration problems or further information contact Saravanan Ramachari at: vp_programs@issa-nova.org
ISSA – NOVA President: Steve Battista ISSA – NOVA Senior VP: Randy Sabett ISSA – NOVA VPs:  Rhonda Farrell, Karen Frederick, Cathy Hogendobler, Alfred Ouyang, Saravanan Ramachari, Rick Smith, Ana Valentin, and John W. von Ruden ISSA – NOVA Directors: Lauren Rousseau Marketing Partners: Rhonda Farrell (ISSA-NOVA, IEEE-CS, WIS SIG)
Sponsored By: The ISSA Northern Virginia (ISSA-NOVA) Chapter of ISSA International, IEEE Computer Society, Washington, DC & Northern Virginia Chapters, and the ISSA International Women In Security Special Interest Group (WIS SIG).  Members of ISSA-NOVA and IEEE-CS include cybersecurity practitioners, system and solutions engineers, students, and members of academia, legal, for-profit, nonprofit, and governmental entities.

Reach out to us and tell us what is on your minds.
ISSA-NOVA web page: http://nova.issa.org
We meet every month on the third Thursday of the month at various Northern Virginia sponsored locations. We look forward to seeing you there!

IEEE Computer Society (IEEE-CS) — Washington, DC & Northern Virginia Chapters
Next month, we meet on June 16, 2016 @ Noblis
Interested in Membership, Sponsorship or Volunteering? Reach out to one of our board members to help you navigate the way forward: http://nova.issa.org/issa-nova-contacts