UCAR-NCAR-UCP, FFRDC and Research Institutions Cybersecurity Partnership

Oct. 12 to Oct. 13, 2017

9:00 am – 12:00 pm MDT

Click to view the recordings from this event.

Federally Funded Research and Development Centers (FFRDC) and universities are increasingly impacted by the rapidly evolving world of IT security, privacy and regulatory compliance. The Cybersecurity Partnership seeks to inform, clarify and initiate hands-on cooperation among the research community.

This event is highly recommended for security system administrators, principal investigators, proposal and budget administrators, project managers and staff working to support projects and proposals.

OBJECTIVES: Demystify Federal regulations and guidelines:

  • What is the Risk Management Framework and why should we care?
  • Does compliance equal security OR security equal compliance?
  • Is FISMA more than a “check box” exercise?
  • How can security training lead to measurable threat awareness?
  • Will revised Federal Acquisition Regulation impact my contracts?
  • How can budgets and proposals be managed for compliance? 
  • How do we get started?
  • How do we factor costs into proposal budgets and justifications?
  • Is the protection of Controlled Unclassified Information (CUI) applicable to research?
  • How can security and privacy controls be integrated into the user environment?
  • Will compliance impact awards and cash flow? 

… and many more questions may need clarification

Keynote Speakers

Dr. Ronald Ross, NIST Fellow and FISMA Implementation Lead


Ron Ross

Ron Ross is a Fellow at the National Institute of Standards and Technology (NIST). Dr. Ross leads the Federal Information Security Management Act Implementation Project including the development of security standards and guidelines for the federal government, contractors, and the U.S critical information infrastructure. He is the principal architect of the NIST Risk Management Framework and author of FIPS 199/200, NIST SP 800-53, NIST SP 800-171, and others. Dr. Ross leads the interagency Joint Task Force partnership with the Department of Defense, the Intelligence Community, and the Committee on National Security Systems. He received the Samuel J. Heyman Service to America Medal for Homeland Security and Law Enforcement.

Copy of Ron's Presentation (PDF).


Mark Riddle, Senior Program Analyst NARA Information Security Oversight


Mark Riddle_sm.jpeg

Mark Riddle serves as Lead for implementation for the Controlled Unclassified Information (CUI) Program. He co-authored the National Institute for Standards and Technology Special Publication 800-17: Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations. Mr. Riddle has developed inspection and investigative criteria in support of numerous government programs to include Classified National Security Information, Personnel Security, Physical, and Sensitive but Unclassified Information Programs.  Mr. Riddle has also served as a lead investigator and conducted formal and informal inquiries into incidents that that involved classified and sensitive information. 

Copy of Mark's Presentation (PDF).