NIST Computer Security Framework (CSF) for an Enterprise Security Program

We are very fortunate to have Sandeep Subramanian present Leveraging NIST Computer Security Framework (CSF) in implementing an Enterprise Security Program

We will discuss how the NIST CSF helped overcome some of the challenges with organization wide security and privacy implementation. The Framework consists of standards, guidelines, and best practices to manage cybersecurity-related risk. Its prioritize, flexible, and cost-effective approach helps to promote the protection and resilience of infrastructure and data. See the CSF site at https://www.nist.gov/cyberframework .

NIST CSF Version 1.1 was published on April 16, 2018. The document has evolved to be even more informative, useful, and inclusive for all kinds of organizations. Among other refinements and enhancements, the document provides a more comprehensive treatment of identity management and additional description of how to manage supply chain cybersecurity.

The NIST NCCoE also released the July 2018 the NIST Cybersecurity Practice Guide, SP 1800-1, Securing Electronic Health Records on Mobile Devices. Cybersecurity experts at the NCCoE collaborated with healthcare industry and technology vendors to develop an example solution to show healthcare providers how they can secure electronic health records on mobile devices. Definitely check out the wonderful list of USE CASES see SP 1800-1 download link at:
https://www.nccoe.nist.gov/projects/use-cases/health-it/ehr-on-mobile-devices

Sandeep Subramanian is a Technology and Cybersecurity professional with breadth and depth of experience in organizing and leading teams in implementing technology to solve business problems. As the Director of Security and Compliance at GSIHealth, a Population Health Management product and services company, the principles of NIST CSF were utilized to effectively protect infrastructure and data serving over a million patients across the US.

NOTE THE LOCATION: We will once more very happily meet at the wonderful Northern Virginia Community College (NVCC) Reston Center, 1821 Michael Faraday Drive, Reston, VA 20190, in Room 310. It is a short distance from the Weihle-Reston East Metro station on the Silver Line. We can arrive 30 minutes before and stay 30 minutes after our meeting (9am-12pm).

Everyone may bring in your own snacks and drinks to the “brunch lunch” 9:30am-11:30am meeting. Some people also informally get together for “after the meeting” lunch together at a nearby restaurant.

Besides earning Professional Development Units (PDUs) for participating our RMF LifeBoat ISSA Education Group meeting, we all receive the encouragement and help we need for our cyber security professional growth. The friendly interactive presentations by our members of the meetup always lead to lively respectful discussions. Members always take away information that they that can be applied on the job in the following weeks! In additional our LifeBoat group meetings provide opportunities for the all-important professional networking. If you have a vexing problem, share with like-minded security professionals. They may have already successfully developed a way forward to resolve it.