• GCN
  • WT
  • DS

Download this eBook to learn what you missed at FCW’s Face-to-Face event held on February 17, 2016.

A number of high-profile data breaches in 2015 have made cybersecurity a top priority in the federal government. But the cyber threat has been growing steadily in recent years, even as agencies have stepped up their efforts to combat it through new and better technologies, policies, and management strategies. For example, according to the latest FISMA Compliance Report from the Office of Management and Budget, federal agencies reported more than 70,000 information security incidents in fiscal 2014, up 15 percent from 2013.

The problem is that the federal IT enterprise is so complex, agencies often are unaware of their cyber vulnerabilities until someone has exploited them and done damage. Such was the case with the 2015 data breaches. The solution is not simply more technology or new policies. Instead, agencies need to take a unified approach to cybersecurity that integrates technology, policy, workforce, and procurement strategies.

This eBook will provide federal IT leaders with insights into how to build a cyber ecosystem that reduces their vulnerabilities and strengthens their capacity to respond to the rising tide of cyber threats.

Topics addressed include:

  • Building on the NIST Cybersecurity Framework
  • The role of advanced analytics
  • Improving real-time situational awareness
  • Insider threat mitigation
  • Advances in fraud management
  • Cyber procurement trends
  • Integrated mobile security
  • Comprehensive continuous monitoring

Featured Speakers:

  • Matthew Barrett
  • Program Manager, NIST Cybersecurity Framework
  • Click for Bio

    Mr. Barrett and his team are responsible for establishing and maintaining relationships with both private and public sector Cybersecurity Framework stakeholders. Mr. Barrett works through those relationships to provide perspective and guidance, as well as gather input on use of the Framework and to inform broader NIST cybersecurity activities.

    Matt is also known for his program management of the Security Content Automation Protocol (SCAP) Program and NIST’s support of OMB's Federal Desktop Core Configuration initiative (predecessor to the U.S. Government Consensus Baseline initiative). Previous to NIST and over the past decade, Matt has served in various IT security executive roles.

  • Richard Hale
  • Deputy CIO for Cyber Security, Department of Defense
  • Click for Bio

    Richard Hale is the Deputy CIO for Cyber Security, Department of Defense. In this position he acts as the department’s Chief Information Security Officer. Mr. Hale is responsible for ensuring the department has a well defined and well executed cyber security program, and is responsible for coordinating cyber security standards, policies and procedures with other federal agencies,coalition partners and industry.

    He previously served as the Chief Information Assurance Executive at the Defense Information Systems Agency (DISA). In this position he oversaw all information assurance activities at DISA. These included development of DoD-wide cyber security standards, development and operation of the department’s shared cyber defenses, development of DoD’s overall layered defense approach and the hardening and defense of the DISA managed part of the DoD’s information infrastructure.

    From 1981 to 1998, Mr. Hale worked at the Naval Research Laboratory where he participated in the design, analysis, and construction of a variety of Navy and Department of Defense information and communication systems, and where he led a group which did enduring work in the development of high assurance systems, secure internet protocols, command and control cyber security, and core security standards.

    Mr. Hale holds Bachelor’s degrees in Applied Mathematics and Electrical Engineering and a Master’s degree in Electrical Engineering, all from the University of Virginia.

  • Dr. Ray Letteer
  • Chief of the Cybersecurity Division of the Command, Control, Communications, and Computer (C4) Department at Headquarters, U.S. Marine Corps.
  • Click for Bio

    Dr. Letteer is the Chief of the Cybersecurity Division of the Command, Control, Communications, and Computer (C4) Department at Headquarters, U.S. Marine Corps. As such, he oversees all efforts within Marine Corps for Cybersecurity (CY) and Information Assurance (IA), which includes Computer Network Defense (CND), Defensive Cyber Operations (DCO), Public Key Infrastructure (PKI), Electronic Key Management Systems (EKMS), and Certification & Accreditation (C&A). He is responsible for the overall creation, promulgation, execution, and oversight of the Marine Corps Cybersecurity program.

    Dr. Letteer serves as the appointed Approving Official (AO) for the Marine Corps Enterprise Network (MCEN), which includes all networks and networked systems whether in garrison or tactically deployed. He is also the Functional Area Manager (FAM) for Marine Corps EKMS/KMI/PKI issues, and the Marine Corps Senior Information Security Official (SISO).

    Prior to his arrival in the Marine Corps in 2003, Dr. Letteer worked in private industry as a federal contractor with Booz | Allen | Hamilton from 1994 to 1997 and SAIC from 1997 to 2003. He supported a variety of government clients in IA and systems security, including the Defense Information Systems Agency and the Department of the Interior.

    Dr. Letteer served from 1973 to 1994 in the intelligence, security, and cybersecurity fields with the United States Air Force. His tours included Lackland and Goodfellow AFB in Texas, the National Security Agency in Maryland, Kadena AB on Okinawa, the Defense Language Institute in California, Teufelsbuerg Operations and Tempelhof AB in Berlin, and finishing his career at the National Air Intelligence Center at Wright-Patterson AFB in Ohio. He was an adjunct faculty member of the National Cryptologic School at NSA, teaching operational information system security. He is an adjunct faculty member of Capital College in Laurel, Maryland, teaching doctorate courses in the Information Assurance program. He is conversant in German and has rudimentary skill in Mandarin Chinese and Japanese.

    Dr. Letteer received both his Doctor of Science (D.Sc.) in Information Assurance and Master of Science in Network Security (with honors) from Capitol College. He has a Bachelor of Arts in Political Science from the University of Maryland University College, a graduate certificate in Systems Management from the University of Southern California, and a Post-Graduate Intelligence Program Diploma in Strategic Intelligence from the Joint Military Intelligence College. He is a graduate of the Federal Executive Institute’s Leadership for a Democratic Society program. Dr. Letteer was selected as one of Federal Computer Week’s Federal 100 for 2005 and is listed in Who's Who in the World 1996, Who's Who in the Midwest 1994/1995, and Who’s Who among Students in American Colleges and Universities 2012.

    Dr. Letteer’s military decorations from his military career include the Meritorious Service Medal, Joint Service Commendation Medal, Air Force Commendation Medal, Air Force Achievement Medal w/1 oak leaf cluster in lieu of subsequent award, Air Force Outstanding Unit Award w /4 oak leaf clusters, Air Force Good Conduct Medal w/ 1 silver oak leaf cluster in lieu of five subsequent awards, Berlin Army of Occupation Medal, and National Defense Service Medal.

    Dr. Letteer is a Certified Information System Security Professional (CISSP), a Certified Chief Information Security Officer (C|CISO), NSA Information Assurance Methodology (NSA-IAM) certified, and Information Technology Infrastructure Library (ITIL) certified. He is Acquisition Level 1 Certified and an Associate member of the American Bar Association, participating on the Science & Technology Committee. Dr. Letteer was certified as a base Special Response Team member in the Air Force. He also holds an Instructor’s license in Bujinkan Budo Taijutsu (4th degree (yondan) black belt), as well as a 1st degree (shodan) black belt in Korean Tae Kwon Do.

  • Steven Schmalz
  • Field CTO, Federal Division, RSA
  • Click for Bio

    In his role as Field CTO for the Federal Division of RSA, Steven Schmalz consults with both commercial and government organizations to assist them in understanding their security architecture needs and how RSA's security products can help protect their critical infrastructure. Before joining RSA Security, Mr. Schmalz served as Director of Business Development for the biometric authentication vendor Quantrad. Prior to that Mr. Schmalz worked for the National Security Agency (NSA) for 13 years as a cryptographic mathematician.

    Mr. Schmalz has presented at a number of security events to include the RSA Conference as well as other speaking engagements focusing on topics ranging from standards compliance to cryptography. He has been a past participant in the ASC X9 working group F1 and is currently an active member of X9 F6 and F4 where he is the technical editor for a new tokenization standard. In addition he continues to track FIPS 140 for RSA.

    He received an undergraduate degree from Columbus University and a Master’s degree in applied mathematics from Southern Methodist University.

  • Martin Stanley
  • Branch Chief, Cybersecurity Assurance, Federal Network Resilience, U.S. Department of Homeland Security
  • Click for Bio

    Martin Stanley is an Information Security and IT Leader within the Department of Homeland Security’s Office of Cybersecurity and Communications. He is responsible for overseeing the Cybersecurity Assurance practices within the Division of Federal Network Resilience. In this role, Martin has established the Cybersecurity Engineering program which is a priority initiative under the Administration’s Cybersecurity National Action Plan. The Cybersecurity Engineering initiative will strengthen Federal Civilian Government cybersecurity by providing security engineering expertise and assistance to further secure agency systems, networks, and data. Martin came to DHS from the United States Food and Drug Administration where he served as the Division Director of the Division of Technology in the Office of Information Management and led the FDA-wide Information Security Program.

    Martin Stanley previously served as the Senior Vice President of Architecture at Vonage, the Broadband Phone Company, where he led a groundbreaking nationwide VOIP E-911 implementation. Martin was an early employee at UUNET Technologies, the pioneering Internet Service Provider.

    Martin maintains a keen interest in public health initiatives and currently serves as a technical advisor to the American Society of Clinical Oncologists (ASCO) for a revolutionary new patient record system which will ensure quality and innovation of care for cancer patients. He recently co-authored “A Cybersecurity Primer for Translational Research” in Science Translational Medicine.

  • Rod Turk
  • Director Office of Cyber Security & Chief Information Security Officer, Office of the Chief Information Officer, U.S. Department of Commerce
  • Click for Bio

    Mr. Turk’s current position as the U.S. Commerce Department’s Chief Information Security Officer (CISO) and Office of Cyber Security Director puts him at the forefront of the government’s cybersecurity efforts. Mr. Turk manages and oversees the Department’s compliance with the Federal Information Security Management Act (FISMA) and implementation of IT security best practices. Rod Turk joined Senior Executive Service with the Transportation Security Administration (TSA) in September 2004. He has held several Senior Executive positions within the Federal government, including serving as the CISO at the U.S. Department of Energy and the Patent and Trademark Office (USPTO). Mr. Turk holds an MBA from Temple University and a Bachelors Degree from the University of Wisconsin. He is a certified Project Management Professional (PMP) and a Certified Information Security Manager (CISM).

Presented By

Sponsored By