Presentation is loading. Please wait.

Presentation is loading. Please wait.

*Separate register for CTF at:

Published by宣 夏 Modified over 5 years ago

Similar presentations

Presentation on theme: "*Separate register for CTF at:"— Presentation transcript:

1 *Separate register for CTF at: https://dau.kaizen-ctf.com
DAU Cybersecurity Acquisition Focus Event: Mission-Aligned Cyber for Weapon Systems Government & Industry Panels, Briefs, *Capture the Flag (CTF) Competition! Register at: (password: cyberfocus) Dial in at , # , Briefs will be posted at: (Learning Materials) *Separate register for CTF at: Agenda May 2019 Tuesday 14 May Cyber Leadership Day Threat Brief (UNCLAS) Cyber Leadership Panel Software Assurance Initiatives Cyber Technical Initiatives Panel Thursday 16 May 2019 Cyber Industry (Half) Day Capture the Flag Awards and Lessons Learned Expert Industry Assessment of DoD Cybersecurity Industry Panel: Cybersecurity Initiatives for Weapon Systems Wednesday 15 May 2019 Cyber Implementation Day Capture the Flag Event (Parallel Track – Full Day at St Mary’s College) Integrated Program Protection Prototype National Cyber Range Hack the Machine Cyber Training Initiatives for Weapon Systems Mission-Based Cyber Risk Assessment Penetration Testing NAVAIR Cyber Incident Response DFARS Covered Defense Information CYBERSAFE This morning/afternoon we’ll baseline our discussion with some foundational cybersecurity concepts and then discuss “at an unclassified level” the types of cyber threats to our weapon systems, networks and critical infrastructure such as electrical, water, oil, and gas systems. Recognizing the increase in the cyber threat, the DoD has updated and published guidance and instructions on cybersecurity; we’ll look at some implications of that guidance. One key takeaway from today’s discussion is…cybersecurity is not a separate process but should be considered in the requirements phase and embedded in existing processes. We’ll discuss the cybersecurity Risk Management Framework and how this “risk” “framework” should be integrated in the Systems Security Engineering processes. And, finally we’ll talk about who should be involved in cybersecurity throughout the acquisition lifecycle. Who in the audience is in the contracting career field, PM, FM/budget, logistics, T&E, Engineering, Cyber/IT? You all play a key role in mitigating cybersecurity risk in our weapon systems, networks, business systems and infrastructure. at Southern Maryland Higher Education Center 44219 Airport Rd, California, MD 20619 Up to 20 Continuous Learning Points Awarded!

2 AGENDA Day 1: Cyber Leadership
First Annual Defense Acquisition University (DAU) Mid-Atlantic Cybersecurity Focus Event -- "Mission-aligned Cyber Warfare" Tuesday 14 May Cyber Leadership Day Location Start End Topic Organizations / Speakers SMHEC 7:30 8:00 Sign in and Coffee (sign up for Firehouse Sub Order for Lunch) DAU 8:15 Introduction & Welcome DAU Mid-Atlantic Dean, Ms Carol Tisone NAVAIR Cyber Senior Leader, Dr David Burke 8:30 Agenda and Overview DAU Cyber Team Profs. Tim Denman, Roy Wilson & Vinny Lamolinara 9:30 Threat Brief (UNCLAS) Aaron Miskell, Defense Security Service Intelligence Specialist 9:45 Break 11:15 Cyber Acquisition Leadership Panel: Mission-Aligned Cyber Challenges and Successes Moderator - NAVAIR Cyber Lead, Dr David Burke CDR AIRTEVRON 1 (VX-1), CAPT Greg Sleppy NAVAIR Dir, Nat'l Cyber Range Complex, Ms Christina Crowley NAVAIR Sys Security Eng Lead, Mr Shahram Bavani NSWCD Dahlgren, Mr Steve Canup, SSTM MARCORSYSCOM, Sys Eng Acq & Log (SEAL), Ms Leslie Clemente, SCA NAVSEA, CAPT Nguyen, Deputy CIO ARDEC, Mr Richard S. Payne, Software Q,R,S Competency Dean SPAWARLANT, Erick Fry, CYBER T&E Order from Firehouse Subs 12:45 Lunch 13:45 Software Assurance Initiatives OSD(R&E)/DASD(Systems Engineering), Mr Tom Hurt, Enterprise Engineering & Software Assurance 14:00 14:45 DoD Cyber Red Team DoDIN Operations and Deconfliction NAVSEA Red Team, Mr Derek Howard 16:00 Cyber Acquisition Technical Panel: Mission-Aligned Technical Cyber Initiatives Moderator - NAVAIR Cyber Warfare Det (CWD) CHENG, Mr Steve Kern NAVAIR CIO / Cyber Ops, Mr Keith Jordan NAVAIR CWD R&D Lead, Mr Ryan Lott NAVAIR CWD LOG Lead, Mr Jeff Pendergist NAVAIR Cyber T&E, Mr Brian Hastings NAVAIR Cyber T&E Labs, Mr Christian Riddle NAVAIR CYBERSAFE, Air 4.0P, Kafayat O. Stephen NAVSEA Red Team, Derek Howard USAF AFMC AFRL/RYWA, Mark M. Stephenson

3 AGENDA Day 2: Mission Aligned Cyber Implementation
Wednesday 15 May 2019 Mission Aligned Cyber Implementation Day Location Start End Topic Organization SMHEC 7:30 8:00 Sign in and Coffee (Sign up for Firehouse Sub Order for Lunch) DAU St Mary's College, MD Capture the Flag Participants Sign in and Coffee (Sign up for Lunch) DAU / BAH St Mary's College MD 16:30 Capture the Flag Event 8:45 Integrated Program Protection Prototype NAVAIR CWD CHENG, Mr Steve Kern 9:30 National Cyber Range Complex, Pax River NAVAIR Dir, NCR Complex, Pax River, Ms Christina Crowley 9:45 Break 10:00 10:45 USS Secure, Cyber Training Events, CYBERSAFE & Cyber Table Tops NAVAIR CIO / Cyber Ops, Mr Keith Jordan & Cybersecurity Developmental Test & Evaluation Rep, DASD (DT&E), Ms Jaime Reiff 11:30 DOD Weapon Systems Cybersecurity: Acquisition Responsibilities and…the Threat DAU Cybersecurity, Mr Ed Adkins Order from Firehouse Subs 13:00 Lunch 13:45 Hack the Machine - Cyber War Game Training for Weapon Systems CEO FATHOM5, Mr Zachary Staples 14:00 14:45 NAVAIR Cyber Incident Response NAVAIR CWD LOG Lead, Mr Jeff Pendergist, Air 6.8 16:00 DFARS Covered Defense Information (CDI) Mini Workshop DAU Prof. Chris Newborn

4 AGENDA Day 3: Cyber Industry Outreach
Thursday 16 May 2019 Cyber Industry Day Location Start End Topic Organization SMHEC 7:30 8:00 Sign in and Coffee DAU 8:30 Capture the Flag Awards and Lessons Learned DAU Mid-Atlantic Dean, Ms Carol Tisone & CTF Sponsor, Mr Mike Morgan, BAH 9:30 Industry Perspective on Cyber Secure Weapon Systems Lockheed Martin Fellow, Dr Ben Calloni, Embedded Cybersecurity 9:45 Break 11:15 Cyber Acquisition Industry Panel: Cyber Initiatives for Weapon Systems Moderator - LMS, Dr Ben Calloni NGC, Mr Allan Hilchie, Security Engineer Boeing Technical Manager, Mr Glen Shelley, Platform Cybersecurity Engineering SMARTRONIX, Mr Stu Young, Technical Director, Defense Solutions SABRE, Mr Bob Hanley, Vice President, Cyber Solutions/Engineering CEO FATHOM5, Mr Zachary Staples 11:30 Close Out / Actions

5 Purpose of Event Why are we here?
Principal theme is Cybersecurity for Weapon Systems in the “Mission-aligned" context Purpose is to bring together Regional Services, Organizations, Agencies & Functional Areas with Industry to share current risks, issues, opportunities, tools & techniques Highlight Government initiatives & lessons learned for areas such as CYBERSAFE, Mission-Based Risk Assessments, Software Assurance, Incident Response, Integrated Program Protection, etc. Not to promote DAU, but to promote better acquisition efforts in Cybersecurity Provide some world-class presentations from Cyber Tech Leaders Provide world class hands-on Capture the Flag training in a weapon system scenario Provide opportunity for Cyber Leadership Guidance to Workforce and Industry

6 DAU Cybersecurity Team Support to Cyber Leadership

7 DAU Efforts Voice of the Customer: learning / educational needs
Hands-on Cyber Hacking Lab / Training Range Integrate Cyber Across Competencies , i.e., PM, Log, ACQ, CON, ENG, TST, ISA, etc. Cyber 100, 200, 300 Level Curriculum Development Cyber Workshop / Consult support: NAVAIR Integrated PPP / Webinar & Video Collaboration, Cyber Planning & Response Center USNTPS Curriculum CTT, Criticality Analysis, Cybersecurity Requirements Support Another Capture the Flag at Pt Mugu end of Aug / Sep Timeframe Other Outreach / Efforts: 26 Jun Ft Belvoir DAU Cyber Focus Event RMF TAG, CITAG, SwA / JFAC COP Protecting Critical Technology Task Force (PCTTF) – Covered Defense Information w/ OSD & DC3

8 CYBERSECURITY ENTERPRISE TEAM
Team Mission: Cybersecurity training and consulting that positively impacts DoD programs throughout the acquisition life cycle. Pax River Kettering Dr. Kenneth Beasley FLD Roy Wilson FLD Vincent Lamolinara FLD Michael Cobb DAU-CNE, Ft Belvoir San Diego Huntsville Derek Duchein FLD Chris Newborn FLD Paul Shaw FLD Tim Denman FLD, Learning Director Heath Ferry FLD Kim Kendall FLD Ed Adkins DAU-S, Eglin AFB

9 Cybersecurity Workshops in iCatalog
The listed workshops, with associated concept cards, can be found in the DAU icatalog at: Workshops above can be tailored and new workshops can be created to address specific customer training needs.

10 More Workshops, Webinars, Town Halls, Forums
System Security Engineering (2-days). Active Cyber Defense (1-day). Threat-Based Engineering (1-day). Cloud Computing Security - Security Principles (2-days). Cloud Computing Security - Cloud Threat-Based Engineering (1-day). Webinars Cyber Survivability Supply Chain Risk Management Software Assurance Integrated Program Protection Planning Integrated Cybersecurity Cyber Table Top Cybersecurity Strategy Cybersecurity Reliability Growth Town Hall Forums Cloud Computing Cyber Acquisition Cyber Threat Risk Management Framework Mission-based Cyber Risk Assessment

11 DAU Cyber Learning Key Online Courses
CLE “Cybersecurity Throughout DoD Acquisition” ACQ Program Protection Planning Awareness CLE Introduction to Cloud Computing ISA Risk Management Framework for Practitioners CLE Supply Chain Risk Management New Starts CLE Software Assurance ENG Intermediate Program Protection Planning Classroom / Instructor-Led w/ Cyber Content Information Systems - ISA 201, ISA 301, ISA 320 Test and Evaluation - TST 204 / 303 Engineering - ENG 301 Acquisition Management - ACQ 202, 203 Program Management - PMT 252, 352B, 360, 401 Logistics – Log 465

12 Dau Cyber Training Range
Competency aligned workflow cybersecurity training for the entire ACWF Technical training for Engineering and IT Centralized management of content Student management of training Modular design and roll out Training and exercises content Competency aligned cyber Offensive/Defensive techniques Cyber Policy / RMF Trusted Systems and Networks Cyber Table Tops Move towards “Call of Duty” style training Interactive, videos, gaming, competition, cyber threats, next gen GUI Welcome to the DAU Cyber Training Range Please Select Login to Begin The DAU Cyber Training Range is intended for cybersecurity education and training for the DoD acquisition workforce. It will also be made available to any government department or agency for training their personnel. We will continue to work closely with the DAU CIO to ensure feasibility and understand and work within DAU/ DoD infrastructure limitations and security concerns.

13 DAU Mid Atlantic Cyber Training Range
Kali Linux Metasploit Keyloggers Fgdump Reverse shell Avionics Exploits Avionics Bus Exploits Exercises Enterprise network Critical infrastructure Weapon system Capture the flag Hack the machine Instructor Students Sandbox Hosted Cyber Training Range Modules

14 *Separate register for CTF at: https://dau.kaizen-ctf.com
DAU Cybersecurity Acquisition Focus Event: Mission-Aligned Cyber for Weapon Systems Government & Industry Panels, Briefs, *Capture the Flag (CTF) Competition! Register at: (password: cyberfocus) Dial in at , # , Briefs will be posted at: (Learning Materials) *Separate register for CTF at: Agenda May 2019 Tuesday 14 May Cyber Leadership Day Threat Brief (UNCLAS) Cyber Leadership Panel Software Assurance Initiatives Cyber Technical Initiatives Panel Thursday 16 May 2019 Cyber Industry (Half) Day Capture the Flag Awards and Lessons Learned Expert Industry Assessment of DoD Cybersecurity Industry Panel: Cybersecurity Initiatives for Weapon Systems Wednesday 15 May 2019 Cyber Implementation Day Capture the Flag Event (Parallel Track – Full Day at St Mary’s College) Integrated Program Protection Prototype National Cyber Range Hack the Machine Cyber Training Initiatives for Weapon Systems Mission-Based Cyber Risk Assessment Penetration Testing NAVAIR Cyber Incident Response DFARS Covered Defense Information CYBERSAFE This morning/afternoon we’ll baseline our discussion with some foundational cybersecurity concepts and then discuss “at an unclassified level” the types of cyber threats to our weapon systems, networks and critical infrastructure such as electrical, water, oil, and gas systems. Recognizing the increase in the cyber threat, the DoD has updated and published guidance and instructions on cybersecurity; we’ll look at some implications of that guidance. One key takeaway from today’s discussion is…cybersecurity is not a separate process but should be considered in the requirements phase and embedded in existing processes. We’ll discuss the cybersecurity Risk Management Framework and how this “risk” “framework” should be integrated in the Systems Security Engineering processes. And, finally we’ll talk about who should be involved in cybersecurity throughout the acquisition lifecycle. Who in the audience is in the contracting career field, PM, FM/budget, logistics, T&E, Engineering, Cyber/IT? You all play a key role in mitigating cybersecurity risk in our weapon systems, networks, business systems and infrastructure. at Southern Maryland Higher Education Center 44219 Airport Rd, California, MD 20619 Up to 20 Continuous Learning Points Awarded!

Download ppt "*Separate register for CTF at:"

Similar presentations

BENEFITS OF SUCCESSFUL IT MODERNIZATION

BENEFITS OF SUCCESSFUL IT MODERNIZATION
ARINC Overview Alliance Baltimore November 16, 2007.

ARINC Overview Alliance Baltimore November 16, 2007.
DoD Integrated Product Support Roadmap Tool

DoD Integrated Product Support Roadmap Tool
DoD Systems and Software Engineering A Strategy for Enhanced Systems Engineering Kristen Baldwin Acting Director, Systems and Software Engineering Office.

DoD Systems and Software Engineering A Strategy for Enhanced Systems Engineering Kristen Baldwin Acting Director, Systems and Software Engineering Office.
Providing Practical Solutions Winning the Talent Wars for Recruiting and Retaining 21 st Century Cyber Engineers Jeff Kubik, PMP, CISSP Sr PM, Praxis Engineering.

Providing Practical Solutions Winning the Talent Wars for Recruiting and Retaining 21 st Century Cyber Engineers Jeff Kubik, PMP, CISSP Sr PM, Praxis Engineering.
Unclassified. Program Management Empowerment and Accountability Mr. David Ahern Director, Portfolio Systems Acquisition AT&L(A&T) 14 April 2009 The Acquisition.

Unclassified. Program Management Empowerment and Accountability Mr. David Ahern Director, Portfolio Systems Acquisition AT&L(A&T) 14 April 2009 The Acquisition.
IT Curriculum Process and Products September 6, 2014 David Pearson Director, Engineering and Technology Center.

IT Curriculum Process and Products September 6, 2014 David Pearson Director, Engineering and Technology Center.
NDIA SE Division Meeting February 13, 2013 1 Developmental Test and Evaluation Committee Beth Wilson, Raytheon Steve Scukanec, Northrop Grumman Industry.

NDIA SE Division Meeting February 13, Developmental Test and Evaluation Committee Beth Wilson, Raytheon Steve Scukanec, Northrop Grumman Industry.
Overview of NIPP 2013: Partnering for Critical Infrastructure Security and Resilience October 2013 DRAFT.

Overview of NIPP 2013: Partnering for Critical Infrastructure Security and Resilience October 2013 DRAFT.
Women’s Forum Update March 27, 2010 Whitney Taylor Karen Wilson.

Women’s Forum Update March 27, 2010 Whitney Taylor Karen Wilson.
Whitacre College of Engineering Panel Interdisciplinary Cybersecurity Education Texas Tech University NSF-SFS Workshop on Educational Initiatives in Cybersecurity.

Whitacre College of Engineering Panel Interdisciplinary Cybersecurity Education Texas Tech University NSF-SFS Workshop on Educational Initiatives in Cybersecurity.
1102 Contract Specialist as a Business Manager Debbie Bartlett Defense Acquisition University.

1102 Contract Specialist as a Business Manager Debbie Bartlett Defense Acquisition University.
Introduction to South Region for NDIA’s Space & Missile Defense Working Group August 20th 2015.

Introduction to South Region for NDIA’s Space & Missile Defense Working Group August 20th 2015.
Paul E. Chiodo Deployment Director, Lean Six Sigma Certified Lean Six Sigma Master Black Belt US Army Armament Research, Development & Engineering Center.

Paul E. Chiodo Deployment Director, Lean Six Sigma Certified Lean Six Sigma Master Black Belt US Army Armament Research, Development & Engineering Center.
Understanding Industry Defense Acquisition University 13 May 2010 Status Brief to NDIA Program Systems Committee.

Understanding Industry Defense Acquisition University 13 May 2010 Status Brief to NDIA Program Systems Committee.
IRM304 CDR Course Manager: Denny Involved Competency Leads: 26 (Cybersecurity)-Denman, 19 (Measurement)-Denny, 7 (DBS)-Corcoran [Capability Planning],

IRM304 CDR Course Manager: Denny Involved Competency Leads: 26 (Cybersecurity)-Denman, 19 (Measurement)-Denny, 7 (DBS)-Corcoran [Capability Planning],
Shift Left Feb 2013 Page-1 DISTRIBUTION STATEMENT A – Cleared for Open Publication by OSR on January 17 th, 2013 – SR case number 13-S-0851 Dr. Steven.

Shift Left Feb 2013 Page-1 DISTRIBUTION STATEMENT A – Cleared for Open Publication by OSR on January 17 th, 2013 – SR case number 13-S-0851 Dr. Steven.
Defense Acquisition University Defense Logistics Agency Diminishing Manufacturing Sources & Materiel Shortages (DMSMS) Training for the DoD Workforce Mr.

Defense Acquisition University Defense Logistics Agency Diminishing Manufacturing Sources & Materiel Shortages (DMSMS) Training for the DoD Workforce Mr.
Emergency Management Training and Education System Protection and National Preparedness National Preparedness Directorate National Training and Education.

Emergency Management Training and Education System Protection and National Preparedness National Preparedness Directorate National Training and Education.
Continuous Learning Module (CLM) Status Update Defense Acquisition University.

Continuous Learning Module (CLM) Status Update Defense Acquisition University.

Similar presentations

Ads by Google