Managing Trustworthiness & Dependability of Systems Acquired Via Supply Chain

Presented by

Dr. Bill Curtis, Executive Director, CISQ | Robert Martin, Sr. Software and Supply Chain Assurance Principal Eng., MITRE

Register: Managing Trustworthiness & Dependability of Systems Acquired Via Supply Chain (brighttalk.com)

About this talk

Join the Consortium of Information and Software Quality (CISQ) on April 6th, 2022, 3:00pm CST – 4:00pm CST to learn how to manage the trustworthiness and dependability of systems acquired through your supply chain. Learning Objectives: – Learn how to leverage CISQ measures to reduce risk in your contacts & SLAs – How to certify software and its level of risk – How to manage the quality of the software you are receiving from a supply chain – Learn about the use of Software Bill of Materials (SBOM) in a software supply chain

RSA Conference (RSAC) 2022

San Francisco, CA
June 6-9, 2022

The theme for RSAC 2022 is “Transform.” This conference offers a dialogue on the rapidly evolving information security industry by providing insight into trends and breaking news in information security. It is intended for military, government, academia, and industry information security experts.

Protecting Data & the Supply Chain
This track explores the cascading security requirements of the extended enterprise and the classification, tracking, and protection of data. It covers data protection regulations, DLP and threats to sensitive data, and emerging trends in software supply chain security as well as vendor and partner SLAs, supply chain mapping, continuous enforcement, and how to future-proof vendor contracts and risk assessments for evolving requirements.

For more information, follow these links:

2022 USA | RSA Conference
Trust, but Verify: Protecting Your Business from Supply Chain Attacks | RSA Conference

Cybersecurity Threats in The Cloud Software Supply Chain

January 20, 2022 — Cybersecurity Threats in the Cloud Software Supply Chain

Register now for ATARC’s Cybersecurity Threats in the Cloud Software Supply Chain event on January 20, 2022, from 1:30 PM – 2:30 PM ET. High-profile software supply chain attacks, such as SolarWinds and Kaseya VSA, have shed a glaring light on the disparity between agencies’ perceptions of security within their cloud infrastructure and the reality of supply chain threats that can impact business catastrophically. Tune in to this panel to hear what topic experts have to say on threat assessment within the cloud, and how the Executive Order impacted agencies’ cloud security practices. Register here.

SmallSat Symposium 2022

February 8-10, 2022 – Mountain View, CA

SmallSats now account for 97% of satellites launched and almost half of all upmass. With hundreds of SmallSat projects underway, this massive shift in satellite markets is poised to only accelerate in the near term.

The 2022 SmallSat Symposium brings together the leaders driving this change to identify critical trends and qualify disruptive technologies. An ideal environment for open communication, important networking and critical insight are hallmarks of this must-attend satellite industry event.

Supply chain will be discussed on the panel: Logistical Support and Integration Services for SmallSat Systems

Full agenda: AGENDA « SmallSat Symposium 2022 (smallsatshow.com)

Register: SmallSat Symposium 2022 (regfox.com)

CyberLEO and CyberSatGov

The CyberSat events are dedicated to fostering the necessary discussions to
understand current threat vectors in the satellite and space industry, with the
intent to develop solutions to prioritize and mitigate risks.

MAY 11-13, 2022 | LOS ANGELES, CA
NOV. 1-3, 2022 | RESTON, VA

Based on market demand, CyberLEO will launch in May in Los Angeles, CA and address cybersecurity threats to Low Earth Orbit satellites and emerging technologies. The conversation continues in November with the flagship event CyberSatGov, focusing on
government, military, satellite, and space technologies.

For more information, visit 39937-CyberSat22-Prospectus-Update_2.pdf (cybersatsummit.com)

To register, visit CyberSat 2022 – New Registration (eventscloud.com)

Rocky Mountain Cyberspace Symposium 2022

Rocky Mountain Cyberspace Symposium 2022 (eventsquid.com)

Rocky Mountain Cyberspace Symposium 2022 AFCEA Rocky Mountain Chapter
Mon, February 21, 2022 — Thu, February 24, 2022

The Rocky Mountain Cyberspace Symposium’s theme this year is: “Securing Partnerships and Technologies.” Modern organizations, whether Federal or Commercial, are increasingly interdependent on each other for mission critical pieces of their operations.  Events in late 2020 and early 2021 highlighted some of the risks and vulnerabilities that can come with this dependence.  Whether it is supply chain risk as demonstrated by the SolarWinds hack, or more traditional exploitations like those seen against Microsoft Exchange; as we all increasingly rely on trusted partners for our success, a critical look at existing and new strategies for securing our shared requirements becomes necessary.

Register at the link above by February 24, 2022 @ 12:00 pm

Webinar on Updates to NIST SP 800-161 Cybersecurity Supply Chain Risk Management Practices for Systems and Organizations

The NIST Cybersecurity Supply Chain Risk Management Team is hosting a webinar on December 1 to provide an overview of the changes made in its 2nd public draft of Special Publication 800 – 161, Revision 1, Cybersecurity Supply Chain Risk Management Practices for Systems and Organizations. NIST seeks to engage stakeholders to provide clarity, answer questions, and get stakeholder comments and opinions that ensure Revision 1 will deliver comprehensive and relevant cybersecurity supply chain risk management practices and guidance.

There will also be a panel of experts to discuss the new APPENDIX F: A Response to Executive Order 14028’s Call to Publish Preliminary Guidelines or Enhancing Software Supply Chain Security, which seeks to provide a response to the directive outlined within Section 4(c) of the EO.

For additional information and to register, please visit: https://csrc.nist.gov/Events/2021/2nd-public-draft-sp-800-161-revision-1-workshop

Cyber Supply Chain Risk Management C-SCRM Software and Supply Chain Assurance Forum

Forums are held several times a year and are FREE and OPEN TO THE PUBLIC; registration is required.

Our next SSCA Forum Virtual Event will be held on Wednesday, September 22nd at 10:30 am to 1:00 pm Eastern Time.  We have a great line-up of speakers and you will not want to miss this Forum.  Our first two sessions feature talks from officials from the Israeli and United Kingdom Governments, respectively.  This will be followed by two sessions focused on the telecommunications sector.  The agenda, below, provides additional details about the speakers and their topics.  We hope you can join us! 

Link

The Space Policy Show: Challenges of the U.S. Space Industrial Base

May 20, 2021 @ 1:00 pm – 2:00 pm Eastern Time

Securing the supply chains for space is critical to the space enterprise. The space industrial base is becoming more commercialized and global. What are the challenges and opportunities for reinforcing partnerships with US allies and competing with our near-peers? Aerospace’s David Eccles talks to Brian Gabriel (Office of Industrial Policy), Jonny Pellish (NASA) and Brad Clevenger (SolAero Technologies).

https://aerospace.org/events/space-policy-show-challenges-us-space-industrial-base

CONNECT WITH US


Check out our Twitter feed using #TheSpacePolicyShow 
 

ABOUT THE SPACE POLICY SHOW


The Aerospace Corporation’s Center for Space Policy and Strategy hosts a series of public webcasts to bring our policy experts together with thought leaders, government, academia and professionals from throughout the space community to discuss current trends and views. The Space Policy Show airs every Thursday at 1:00 pm ET. Browse the archives for other interesting topics. Look for upcoming episodes at our events page.

CyberSatDigital (May 10-12, Virtual)

CyberSatDigital

Through a combination of digital and in-person experiences, CyberSat events provide a unique and powerful opportunity for the cybersecurity community to better understand the most pressing threat vectors with the intent to prevent cyberattacks.

Taking place online May 10 – 12, CyberSatDigital began the all-important conversation on how to identify bad actors, neutralize risks, and thwart threats on our assets in the satellite ecosystem.

The Aerospace Corporation served as event co-sponsor, contributed to multiple panels and hosted the CyberSatDigital classified day of programming.

Space ISAC’s Role in Security to the Global Space Sector

It’s essential to signal to our adversaries and competitors, and to cybercriminals that they cannot put space systems at risk successfully and that the security and resilience of these systems can be assured under all circumstances. The Mission of Space ISAC is to facilitate collaboration across the global space industry to enhance our ability to prepare for and respond to vulnerabilities, incidents, and threats facing our space systems and the critical infrastructure they comprise. The panel will discuss the technical, policy, and implementation challenges of protecting that infrastructure and the policy decisions, such as designating these systems as a sector of the nation’s critical infrastructure.

  • Moderator: Erin MillerExecutive Director, Space ISAC
  • Speakers: 
    • Ed Devinney, Corporate Director for Cyber Programs, Northrop Grumman
    • Edward SwallowSVP, Civil Systems Group, Aerospace
    • Samuel Sanders VisnerTechnical Fellow, Mitre