About the Seminar
Come and join Ted Dziekanowsi and Andy Watkin-Child in a conversation around US Cyber Regulatory and Legislative updates and Their Impact on Industry. 2022 promises to be a major year for regulatory and legislative movement as it relates to cybersecurity, risk management, and compliance domestically and globally.
Cyber is the biggest non-financial risk faced by nation-states and their governments outside of climate change and global systemic risks like COVID 19. Cyber-attacks have resulted in the loss of Intellectual Property (IP) of organizations, the destruction of digital assets through ransomware, damage to brand and reputation, impacting competitive advantage, and National Security.
What You Get
- A thorough overview of US Cyber Regulatory and Legislative Updates (NIST, FISMA, DFARS, SEC, ESG, Treasury)
- Deep insights around the impacts of the changing US Cyber Regulatory environment and where things are heading in 2022 and beyond
- Aligning your business to meet current and coming regulatory
- Program summary in PDF format
- Certificate of Completion for CEUs/PDUs
Cyber attacks in 2020 and 2021 have resulted in the US adopting a significant cybersecurity legislative program with Executive Orders 14017 focusing on the security of US Supply Chain Risk Management (SCRM) and Executive Order 14028 addressing the Nation’s Cybersecurity. Leading to a significant cybersecurity legislative program across Congress and increased regulatory oversight and enforcement by the Department of Justice, Treasury, and Defence.
Addressing these changes we are running cybersecurity and cyber risk management seminars that focus on US cyber regulation. That includes the Federal Information Security Modernization Act (FISMA), the adoption of the Risk management Framework (NIST SP 800-37R2) and Defence Federal Acquisition Regulatory Supplement (DFARS) 252.205-7012, 7019, 7020 and the implementation, oversight, and assurance of NIST SP 800-171 cybersecurity requirements.
The US cyber regulatory environment is changing. The Department of Justice (DOJ) is developing a Cybersecurity Enforce regime, the Department of Treasury is focusing on Ransomeware under its Office of Foreign Assets Control (OFAC) sanctions program and in all likelihood, the Department of Homeland Security (DHS) will take a role in the management of Federal cybersecurity. The DHS’s Cybersecurity & Infrastructure Security Agency (CISA) advocates for the use of Cybersecurity Framework Profiles (CSF) to manage cybersecurity. CISA has developed a number of CSF provides for critical and national infrastructure.
Federal Information Security Modernization Act (FISMA)
An overview of the Federal Information Security Modernization Act and the application of the Risk management Framework for the management of Supply Chain Risk Management (SCRM).
Defense Federal Acquisition Regulation (DFARS)
DFARS 252.204-7012, 252.204-7019, and 252.204-7020, as applied by the Department of Defense (DoD) to the Defence Industry Base (DIB).
National Institute of Standards and Technology (NIST) SP 800-171
NIST SP 800-171 and the assessment of the 110 cybersecurity Practices required by the DoD for contract Compliance.
Cybersecurity Framework Profiles (CSF Profiles)
How they differ from NIST SP 800-171 and their application as an industry-specific cybersecurity profile suitable to address cybersecurity board governance, risk management, strategy tailored to business and mission objectives.