NDIA SE Conference 2016 System Security Engineering Track Session Kickoff Holly Dunlap NDIA SSE Committee Chair Holly.

Similar documents
Cybersecurity in Acquisition

Department of Defense (DoD) Joint Federated Assurance Center (JFAC) Overview

Cybersecurity and Program Protection

DoD Software Assurance Initiative. Mitchell Komaroff, OASD (NII)/DCIO Kristen Baldwin, OUSD(AT&L)/DS

Defense Engineering Excellence

Systems Engineering Division

DoD Joint Federated Assurance Center (JFAC) Update

Acquisition and Intelligence Community Collaboration

Engineering Cyber Resilient Weapon Systems

Joint Federated Assurance Center (JFAC): 2018 Update. What Is the JFAC?

Program Protection Implementation Considerations

Shaping the Department of Defense Engineering Workforce

Advancing the Role of DT&E in the Systems Engineering Process:

Systems Engineering Update/SD-22

Cybersecurity (CS) (as a Risk Based Approach) & Supply Chain Risk Management (SCRM) (Levels of Assurance for HwA, SwA & Assured Services?

DoD Strategy for Cyber Resilient Weapon Systems

CYBER RESILIENT AND SECURE WEAPON SYSTEMS ACQUISITION / PROPOSAL DISCUSSION

Achieving DoD Software Assurance (SwA)

Quality Collaboration Across Government and Industry in a Time of Profound Changes

TEL2813/IS2621 Security Management

Rocky Mountain Cyberspace Symposium 2018 DoD Cyber Resiliency

IMPROVING CYBERSECURITY AND RESILIENCE THROUGH ACQUISITION

DoD Software Assurance (SwA) Update

Supply Chain (In)Security

AMRDEC CYBER Capabilities

National Cybersecurity Center of Excellence

DoD Systems Engineering Update

NATIONAL DEFENSE INDUSTRIAL ASSOCIATION Homeland Security Symposium

UNCLASSIFIED. FY 2016 Base FY 2016 OCO

The Office of Infrastructure Protection

UNCLASSIFIED. FY 2016 Base FY 2016 OCO

Implementing a Modular Open Systems Approach (MOSA) to Achieve Acquisition Agility in Defense Acquisition Programs

Texas Reliability Entity, Inc. Strategic Plan for 2017 TEXAS RE STRATEGIC PLAN FOR 2017 PAGE 1 OF 13

The NIST Cybersecurity Framework

IT Risk Management and Cybersecurity Summit

Software & Supply Chain Assurance: Enabling Enterprise Resilience through Security Automation, Software Assurance and Supply Chain Risk Management

Emerging Security Challenges November 22, 2012, Baku

A Supply Chain Attack Framework to Support Department of Defense Supply Chain Security Risk Management

T&E Workforce Development

ISA 201 Intermediate Information Systems Acquisition

Implementing the Administration's Critical Infrastructure and Cybersecurity Policy

Service Management. What an Acquisition Practitioner Needs to Know. Karen Gomez Defense Information Systems Agency Mission Support Division

Synergies of the Common Criteria with Other Standards

Systems Engineering and System Security Engineering Requirements Analysis and Trade-Off Roles and Responsibilities

Avionics Cyber T&E Examples Testing Cyber Security Resilience to support Operations in the 3rd Offset Environment

I n t e g r i t y - S e r v i c e - E x c e l l e n c e

Strengthening the Cybersecurity of Federal Networks and Critical Infrastructure

Supplier Training Excellence Program

Cybersecurity for Department of Defense Microgrids: An Army Perspective

Updates to the NIST Cybersecurity Framework

Systems Engineering for Software Assurance

INFORMATION ASSURANCE DIRECTORATE

Advancing Sustainment through Public-Private Partnership

Managing Supply Chain Risks for SCADA Systems

Software Test & Evaluation Summit/Workshop Review

DEFENSE LOGISTICS AGENCY AMERICA S COMBAT LOGISTICS SUPPORT AGENCY. Cyber Security. Safeguarding Covered Defense Information.

Cybersecurity & Privacy Enhancements

Cyber Security Summit 2014 USCENTCOM Cybersecurity Cooperation

Systems 2020 Strategic Initiative Overview

OSD RDT&E BUDGET ITEM JUSTIFICATION (R2 Exhibit)

Advanced Technology Academic Research Council Federal CISO Summit. Ms. Thérèse Firmin

The MEP National Network: Providing Hands-on Technical Assistance to U.S. Manufacturers

Cyber Security & Homeland Security:

Supply Chain Information Exchange: Non-conforming & Authentic Components

Advanced Cyber Risk Management Threat Modeling & Cyber Wargaming April 23, 2018

2 nd Cybersecurity Workshop Test and Evaluation to Meet the Advanced Persistent Threat

Implementing Executive Order and Presidential Policy Directive 21

The Perfect Storm Cyber RDT&E

CSD Project Overview DHS SCIENCE AND TECHNOLOGY. Dr. Ann Cox. March 13, 2018

ROADMAP TO DFARS COMPLIANCE

Information and Communication Technology (ICT) Supply Chain Security Emerging Solutions

Workshop 71: Is Your Financial System Ready? An Overview of Effective Federal Information System Controls Audit Manual (FISCAM) Assessments

DoD Systems Engineering Update: Engineering Enterprise Initiatives

Cyber Partnership Blueprint: An Outline

Safeguarding Unclassified Controlled Technical Information

Appendix 2B. Supply Chain Risk Management Plan

UNCLASSIFIED. UNCLASSIFIED R-1 Line Item #49 Page 1 of 10

UNCLASSIFIED. UNCLASSIFIED Office of Secretary Of Defense Page 1 of 8 R-1 Line #18

Systems Security Engineering: A Framework to Protect Hardware Down to the Last Tactical Inch

Test and Evaluation Methodology and Principles for Cybersecurity

DFARS Safeguarding Covered Defense Information The Interim Rule: Cause for Confusion and Request for Questions

Technical Conference on Critical Infrastructure Protection Supply Chain Risk Management

National Cybersecurity Center of Excellence

Trustworthy Information Systems Program

Naval Surface Warfare Center,

CYBER SECURITY BRIEF. Presented By: Curt Parkinson DCMA

UNCLASSIFIED FY 2016 OCO. FY 2016 Base

THE UNDER SECRETARY OF DEFENSE 3010 DEFENSE PENTAGON WASHINGTON, DC ACQUISITION, TECHNOLOGY AND LOGISTICS January 11, 2017

Smart Manufacturing and Standards: The NIST Role

System Security Engineering for Program Protection and Cybersecurity

Space Cyber: An Aerospace Perspective

International Nonproliferation Export Control Program (INECP) Government Outreach for Enterprise Compliance

Protecting the Nation s Critical Assets in the 21st Century

Cybersecurity Risk Management:

Introducing Cyber Resiliency Concerns Into Engineering Education

NCCoE TRUSTED CLOUD: A SECURE SOLUTION

Five-Year Strategic Plan

December 10, Statement of the Securities Industry and Financial Markets Association. Senate Committee on Banking, Housing, and Urban Development

Health Information Technology - Supporting Joint Readiness

UNCLASSIFIED R-1 ITEM NOMENCLATURE FY 2013 OCO

Transcription:

NDIA SE Conference 2016 System Security Engineering Track Session Kickoff Holly Dunlap NDIA SSE Committee Chair Holly. Dunlap@Raytheon.com This document does not contain technology or Technical Data controlled under either the U.S. International Traffic in Arms Regulations or the U.S. Export Administration Regulations.

System Security Engineering Track Agenda Welcome NDIA Mission Introductions SSE Committee 2016 Accomplishments SSE Committee 2017 Planning SSE Track At A Glance System Security Engineering Chair: Holly Dunlap, Holly.Dunlap@Raytheon.com

NDIA Mission Mission: To promote the widespread use of systems engineering (SE) in the Department of Defense (DoD) acquisition process in order to achieve affordable and supportable weapon systems that meet the needs of the military users. To provide a forum for the open exchange of ideas and concepts between government, industry and academia. To develop a new understanding of a streamlined SE process. The SE Division seeks to effect good technical and business practices within the aerospace and defense industry. It focuses on improving delivered system performance, including supportability, sustainability, and affordability. The division emphasizes excellence in systems engineering throughout the program life cycle and across all engineering disciplines and support functions.

Introductions Industry Government Military Intelligence FFRDC Academia Policy & Governance Major Defense Programs Acquisition Systems Engineering System Security Engineering Resiliency Cybersecurity Information Assurance Software Assurance Hardware Assurance Supply Chain Testing Standards Thank you to those that are actively engaged and shaping the future!

2016 Accomplishments Summary Joint Projects: A Path Towards Cyber Resilient and Secure Systems Metrics & Measures NIST SP 800-160 Review & Comment INCOSE SSE Committee Joint Federated Assurance Center (JFAC) SwA NDIA Software Committee NDIA SE Issues Workshop Provided an SSE Industry Perspective: GOMACTech Association of Old Crows Cyber Summit Optimizing the AF Acquisition Strategy of Secure & Reliable Electronic Components National Academy of Science Potomac Institute Tiers of Trust, Hardware and IP Security: the Buyer s Perspective Committee Meeting Guest Speakers: Cyber Resiliency Focused SE Suzanne Hassell, Raytheon NIST SP 800-160 Systems Security Engineering: Considerations for a Multidisciplinary Approach in the Engineering of Trustworthy Secure Systems Michael McEvilley, Mitre JFAC SwA Tom Hurt, OSD SE SwA System Security Engineering Integrated Technical Processes Danny Holtzman, Mitre - Chief, AF Cyber Integration

A Path Towards Cyber Resilient and Secure Systems Metrics & Measures System Security Engineering Chair: Holly Dunlap, Raytheon Holly.Dunlap@Raytheon.com Beth Wilson, Raytheon Beth_J_Wilson@Raytheon.com The Joint NDIA SSE & DT&E Paper is Posted on the NDIA Systems Engineering Division Studies & Publications Website: http://www.ndia.org/divisions/divisions/systemsengineering/pages/studies.aspx

Optimizing the Air Force Acquisition Strategy of Secure and Reliable Electronic Components National Academy of Science Description In 2012, the National Defense Authorization Act (NDAA), section 818, outlined new requirements for industry to serve as the lead in averting counterfeits in the defense supply chain. Subsequently, the House Armed Services Committee, in its report on the Fiscal Year 2016 NDAA, noted that the pending sale of IBM s microprocessor fabrication facilities to Global Foundries created uncertainty about future access of the United States to trusted state-of-the-art microelectronic components and directed the Comptroller General to assess the Department of Defense s (DoD s) actions and measures to address this threat. Terms of Reference: 1. Define the current technological and policy challenges with maintaining a reliable and secure source of microelectronic components; 2. Review the current state of acquisition processes within the Air Force for acquiring reliable and secure microelectronic components; and 3. Explore options for possible business models within the national security complex that would be relevant for the Air Force acquisition community. This publication summarizes the results of the workshop. http://www.nap.edu/catalog/23561/optimizing-the-air-force-acquisition-strategy-of-secure-and-reliableelectronic-components

Partner with Trusted Suppliers Steering Group Government Microelectronics Applications Critical Technology Conference GOMACTech Conference March 14 17 2016 Orlando, FL March 20-23, 2017, Reno, NV https://www.gomactech.net/ Key Note & Industry Panel Session: Systems Security Engineering and Cyber Resiliency: The Component Connection Major defense systems integrators shared their experience, expertise, and company perspective on integrating security into their program supply chain strategies. Facilitated by Holly Dunlap Raytheon, NDIA SSE Committee Chair

Association of Old Crows Cyber Summit April 2016 Cyber Challenges: Threat, Technologies, and Systems A classified summit focusing on cyber challenges facing the U.S., Operations Other than War, and its Allies. Speakers and panelists discussed operational needs and technology gaps, strategies and methodologies, resources, systems, and solutions to design and field infrastructure and capabilities resilient to the advanced cyber threats. NDIA SSE Chair: Holly Dunlap Cyber Challenge via Systems Security Engineering Prime System Integrator Perspective

This is How We Feel.. Stronger collaboration before you get here. Will achieve higher ROI across programs. Policy & Guidance Program System X, Y, Z Service SME s SSE / PPP Cyber SCRM SwA AT Contractor SSE Solutions $ Encourage Stronger Industry & Government Collaboration

SSE Committee Planning 2017 Topics for Consideration: System security risk contributions to the program technical performance risk System security engineering design principles and practices for embedded systems Collaboration & Outreach Opportunities: Joint Federated Assurance Center (JFAC) INCOSE SSE NDIA DT&E Committee NDIA Trusted Microelectronics AF Cyber Secure Task Force Navy CyberSafe Methods: Projects Guest Speakers

SSE Committee Program Protection & Cybersecurity SSE, Whose Job Is It Anyway? Mission Assurance & Cybersecurity, Academia Protecting Unclassified Controlled Technical Information Acquisition Strategy, Cyber Resilient Weapon Systems NIST SP 800-160 Security Engineering Cyber Resiliency in the SE V SSE for Mission Assurance DoD Strategy for Assured Microelectronics Critical Component Identification Managing the Security Risk for FPGA IP Behavior Analysis for Efficient Malware Detection System Security Engineering & Cyber Resiliency: Component Connection Injecting Security into Decision Analysis Whitelisting Products SSE Track At A Glance Applying RMF for a Successful Program Case Study SwA & RMF Cyber FMECA, Cyber Effects Criticality Determination Joint Federated Assurance Center JFAC Industry Outreach Systems & SwA Capability Gap Analysis Cybersecurity Test Lessons Learned Forecasting System Capabilities & Mission Assurance System Security Statistical Test Optimization Panel Discussion Cyber Modeling & Simulation Cybersecurity for Advanced Manufacturing Model Based Cyber Enterprise Assessment System SE Methods for Incorporating Innovative Technologies in DoD Systems * See Conference Agenda for Detailed Presentation Titles and Presenters

Questions?

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback