• June 2, 2015
  • National Press Club
    Washington D.C.

About the Conference

Big changes are coming to the Continuous Diagnostics and Mitigation program. The second phase of CDM is now in full swing, and the Department of Homeland Security and the General Services Administration are preparing for the third phase, which represents a significant shift in focus—and in capabilities.

In phase three, CDM will provide agencies with the tools for protecting the boundaries—network, physical and virtual—and for planning for and responding cyber incidents. The third phase also will address requirements for managing the full cybersecurity lifecycle.

At this event, cyber experts from across government will discuss tools and tactics for implementing CDM and for making it a centerpiece of an agency’s broader cyber strategy. The event will provide a deep-dive look into the various phases of CDM, including progress reports, as well as innovations, solutions and trends driving the program forward.

The agenda will include Fireside chats with CDM executives led by Anne Armstrong, chief content officer, 1105 Public Sector Group; government panels, keynotes and sessions, as well as a closing workshop session that provides attendees an opportunity to engage with government speakers on their most pressing CDM issues.

Potential topics to be addressed include:

  • Best practices in risk management
  • New approaches to managing privileges and credentials
  • The convergence of physical and logical security
  • Endpoint security
  • Identity management
  • Audience and compliance reporting
  • The intersection of cloud, FedRAMP and CDM
  • Strategies for cyber lifecycle management
  • Advances in security-related behavior management
  • Leveraging cyber dashboards
  • Real-time asset discovery and vulnerability management

Conference Agenda

Wednesday, November 1, 2017

7 AM
8 AM
9 AM
10 AM
11 AM
12 PM
1 PM
8:30am - 8:35am Opening Remarks
9:05 am - 9:45 am Government & Industry Panel I: Strategies for Cyber Lifecycle Management
  • Tim McBride Acting Deputy Director of the National Cybersecurity Center of Excellence (NCCoE) National Institute of Standards and Technology
  • Dominic Sale (invited) Deputy Associate Administrator
    Office of Information, Integrity and Access (I2A)
    Office of Governmentwide Policy (OGP)
    General Services Administration
  • Gary Stevens Director, Office of Cybersecurity and
    Program Manager for the VA Enterprise Cybersecurity Strategy (ECST)
    Department of Veterans Affairs
9:45 am - 10:05 am Networking Break
10:05 am - 10:45 am Government & Industry Panel II: Evolving Best Practices in Network Security
  • Willie Crenshaw, Jr. Program Executive CDM and Risk Management, Office of the Chief Information Officer National Aeronautics and Space Administration
  • Hillary Palmer Senior Enterprise Account Manager McAfee
10:45 am - 11:15 am Government Session I: Strategies for Access Management
  • Jim Sheire (Invited) Director of the Federal Identity, Credential, and Access Management (FICAM) Program General Services Administration
11:15 am - 11:45 am Fireside Chat: Identity Management
11:45 am - 12:15 pm Lunch & Networking
12:15 pm - 12:45 pm Lunch Government Keynote: Extending the Boundaries of CDM
  • Kevin Cox (Invited) CDM Program Manager, Network Security Deployment U.S. Department of Homeland Security
12:45 pm - 1:25 pm Government & Industry Panel III: New Approaches to Risk Management
  • Kelley Dempsey Senior Information Security Specialist, Information Technology Laboratory/Computer Security Division National Institute of Standards and Technology
  • Jonathan Nguyen-Duy Vice President, Strategic Programs Fortinet
  • Patrice Arnold (Invited) Deputy Chief Information Security Officer Federal Emergency Management Agency
1:25 pm - 1:55 pm CDM Workshop
  • Kelley Dempsey Senior Information Security Specialist, Information Technology Laboratory/Computer Security Division National Institute of Standards and Technology
1:55 pm - 2:00 pm Closing Remarks


HTML - No Current Item Deck
  • CGI
  • Saviynt
  • Sail Point and Sila Solutions
  • McAfee
  • Fortinet