Virtual Monthly Speaker Series: Supply Chain Risk Management in a Global World
Virtual Monthly Speaker Series: Supply Chain Risk Management in a Global World
Wednesday, April 19, 2023 (11:30 AM - 1:00 PM) (EDT)
Description
Supply Chain Risk Management in a Global World
One of the top cybersecurity concerns in 2023 is supply chain security for software. Risks can include insertion of counterfeits, unauthorized production, tampering, theft, insertion of malicious software and hardware, as well as poor manufacturing and development practices in the cybersecurity-related elements of the supply chain.
The recently released NIST Cybersecurity Supply Chain Risk Management (C-SCRM) program helps agencies manage the increasing risk of supply chain compromise related to cybersecurity. In addition, National Security Agency and the Cybersecurity and Infrastructure Security Agency have released new guidance, “Securing the Software Supply Chain: Recommended Practices Guide for Customers,” which outlines the steps that customer agencies should take to evaluate and ensure the security and integrity of the software they acquire.
Join AFFIRM as thought leaders from government and industry discuss the nature of complex software environments and methods to better manage and mitigate supply chain risks.
This event is on the record. There is 1.5 CEU available for this program.
Learning objectives:
- Explore best practice for building an effective risk management program.
- Discuss ways to tailor cyber supply chains based on the individual agency context.
- Review adversarial threats such as tampering and counterfeits as well as internal and external vulnerabilities.
Panelists
- Chad Bahan, Federal Program Manager, Pension Benefit Guaranty Corporation
- Zetra Batiste, Director, E-CISO C-SCRM, Bureau of Information Resource Management, U.S. Department of State
- Lisa Graf,Chief Sustainment Engineer, PEO, Combat Ground Systems, U.S. Army
- Shon Lyublanovits, CDPSE C-SCRM PMO Lead, Cybersecurity Division, Cybersecurity and Infrastructure Security Agency, Department of Homeland Security
- Jason Mullins, Cyber Risk Information Assurance Services, Office of the Chief Information Officer, U.S. Department of Education
Moderator
Justin Doubleday, Senior Reporter, Federal News Network