Securing the Cyber/Software Supply Chain

Name: Securing the Cyber/Software Supply Chain
Start: 2024-02-29
End: 2024-02-29
Location: Virtual

All event times are U.S. Eastern time

Feb 29 2024

Expired!

1:00 pm - 3:00 pm

Virtual Workshop

Executive Order 14028 (Improving the Nation’s Cybersecurity) established new requirements to secure the federal government’s software supply chain. The requirements involved systematic reviews, process improvements, and security standards for both software suppliers and developers, in addition to customers who acquire software for the federal government.

The software supply chain is only truly secure when all entities throughout the public sector carry out effective and coordinated security measures to ensure the integrity of the supply chain. This virtual workshop will review key practices in cyber supply chain risk management, including how to develop a strategy that contains standards, information sharing, and involvement of all the stakeholders.

Learning objectives include:

Hear examples of how agencies are mitigating software supply chain security risks and complying with government guidelines (M-21-30, M-22-18, and SP 800-218).
Learn how to respond to vulnerabilities on a continuous basis
Hear an overview of the threats the software supply chain faces
Understand risk management and cybersecurity best practices to help protect the software supply chain

AGENDA

1:00 pm

Welcome and Opening Remarks

Mike Smoyer
President, Digital Government Institute

1:00 pm

Update: NIST SP 800-204D 'Strategies for the Integration of Software Supply Chain Security in DevSecOps CI/CD Pipelines'

Ramaswamy Chandramouli
Supervisory Computer Scientist, NIST

1:30 pm

Strengthen Security in Your Software Supply Chain

Travis Steele
Chief Architect, Red Hat

Kanitra Tyler
Supply Chain Risk Management (SCRM) Service Element Lead, NASA

2:00 pm

Confessions of a Participant in Supply Chain

Brian Hajost
Founder and COO, SteelCloud

2:30 pm

The Evolving Landscape of Cyber Threats: Stopping Unauthorized Code Execution in Your IT Environments

Faisal Razzak
Group Manager, R&D – Post Quantum & Secure Software Supply Chain Initiatives, Venafi

2:45 pm

Closing Comments

VIEW ON DEMAND

In order to receive CPE credit, attendees must fulfill all of these requirements:

Attend the entire program
Respond to all poll questions
Complete and submit the post-event survey

Securing the Cyber/Software Supply Chain

All event times are U.S. Eastern time

AGENDA

1:00 pm

Welcome and Opening Remarks

1:00 pm

Update: NIST SP 800-204D 'Strategies for the Integration of Software Supply Chain Security in DevSecOps CI/CD Pipelines'

1:30 pm

Strengthen Security in Your Software Supply Chain

2:00 pm

Confessions of a Participant in Supply Chain

2:30 pm

The Evolving Landscape of Cyber Threats: Stopping Unauthorized Code Execution in Your IT Environments

2:45 pm

Closing Comments

Sponsor

Organizer Name

Sponsors

RedHat

Website

SteelCloud

Website

Venafi

Website

Registration for FISMA Training Closes Monday, September 11, 2023

Securing the Cyber/Software Supply Chain

All event times are U.S. Eastern time

AGENDA

1:00 pm

Welcome and Opening Remarks

1:00 pm

Update: NIST SP 800-204D 'Strategies for the Integration of Software Supply Chain Security in DevSecOps CI/CD Pipelines'

1:30 pm

Strengthen Security in Your Software Supply Chain

2:00 pm

Confessions of a Participant in Supply Chain

2:30 pm

The Evolving Landscape of Cyber Threats: Stopping Unauthorized Code Execution in Your IT Environments

2:45 pm

Closing Comments

Sponsor

Organizer Name

Sponsors

RedHat

Website

SteelCloud

Website

Venafi

Website

Related Events

Artificial Intelligence to Enhance Cybersecurity

Managing Multi-Cloud Environments

Registration for FISMA Training Closes Monday, September 11, 2023