Posted March 13th, 2009 by
rybolov
We’ve got another good US Government Security Certification and Accreditation (C&A) Seminar/Workshop coming up at the end of March with Potomac Forum.
Graydon McKee (Ascension Risk Management and associated blog) and Dan Philpott (Fismapedia Mastermind and Guerilla-CISO Contributor) are going to the core of the instruction, with a couple others thrown in to round it all out. I might stop by if I have the time.
What we promise:
- An opportunity to hear NIST’s version of events and what they’re trying to accomplish
- An opportunity to ask as many questions as you possibly can in 2 days
- Good materials put together
- An update on some of the recent security initiatives
- An opportunity to commiserate with security folks from other agencies and contractors
- No sales pitches and no products
See you all there!
Similar Posts:
Posted in FISMA, NIST, Speaking | 
No Comments »
Tags: 800-30 • 800-37 • 800-53 • 800-53A • 800-60 • accreditation • auditor • C&A • catalogofcontrols • categorization • certification • fisma • government • infosec • infosharing • management • NIST • omb • risk • security • seminar • speaking • training
Posted February 17th, 2009 by
rybolov
This weekend, Joe Faraone (Vlad the Impaler), Graydon Mckee, and I teamed up to be a guest panel for Michael Santarcangelo’s Security Catalyst podcast. We wax esoterically on the fine points of certification and accreditation and what kind of value that it brings to an agency or company that does it right.
You can check it out here.
Similar Posts:
Posted in Speaking, What Works | No Comments »
Tags: accreditation • C&A • certification • fisma • government • infosec • security • speaking
Posted February 10th, 2009 by
rybolov
The accreditation decision is one of the most key activities in how the US Government secures its systems. It’s also one of the most misunderstood activities. This slideshow aims to explain the role of the Authorizing Official and to give you some understanding into why and how accreditation decisions are made.
I would like to give a big thanks to Joe Faraone and Graydon McKee who helped out.
The presentation is licensed under Creative Commons, so feel free to download it, email it, and use it in your own training.
Similar Posts:
Posted in FISMA, NIST, Risk Management, Speaking | 5 Comments »
Tags: 800-37 • accreditation • C&A • certification • compliance • fisma • government • infosec • management • NIST • omb • risk • security • speaking
Posted September 22nd, 2008 by
rybolov
The Potomac Forum crew is back at it again with a C&A seminar on the 15th and 16th. While 2 days isn’t long enough to earn your black belt at C&A-Foo, it is enough so that if you’re a solid program manager or technical lead, you’ll walk out being at least able to understand the core of the process.
As usual, some of the instructors should be familiar to my blog readers. =)
Similar Posts:
Posted in FISMA, Speaking | No Comments »
Tags: 800-37 • 800-53 • 800-53A • accreditation • C&A • catalogofcontrols • categorization • certification • compliance • datacentric • fips-199 • fisma • government • infosec • management • risk • security • speaking
Posted July 28th, 2008 by
rybolov
Potomac Forum is having a 2-day C&A seminar on August 6th and 7th. It will be unusually good this time because I won’t be there to drag everybody down–I’ll be on the road for some training. =) Anyway, check it out and say hi to my instructors from me.
Similar Posts:
Posted in FISMA, Speaking | 1 Comment »
Tags: 800-53 • 800-53A • C&A • catalogofcontrols • compliance • fisma • gettingtogreen • government • infosec • infosharing • management • omb • risk • scalability • security • seminar • speaking
Posts RSS
Subscribe via Email
