Broadband Comes of Age…!
And with it, come great benefits:Smart Communities, Smart Infrastructure,Business-Critical Applications,Mission-Critical Applications...
Moderator: Rick Williams – Leidos Corporation,supporting FirstNet in Oregon and SAIC
Panelists:Samantha Baltzersen – Cyber Intrusion Squad,
Federal Bureau of Investigation
Cheryl Hiemstra – Oregon Department of Justice
Lakshmi Diener – University of Portland
Tim Williams – Stevens Institute of Technology
David Childers – Proposed Oregon Center for Cyber Excellence
Wayne Machuca – Mt Hood Community CollegeCyber Security and Networking Program
Broadband Comes of Age…!
And with it, come great benefits:Smart Communities, Smart Infrastructure,Business-Critical Applications,Mission-Critical Applications...
And, bad guys too, so:Threats, RisksLegal issuesCyber and Physical SecurityDisaster Recovery Planning
Moderator: Rick Williams – Leidos Corporation,supporting FirstNet in Oregon and SAIC
Panelists:Samantha Baltzersen – Cyber Intrusion Squad,
Federal Bureau of Investigation
Cheryl Hiemstra – Oregon Department of Justice
Lakshmi Diener – University of Portland
Tim Williams – Stevens Institute of Technology
David Childers – Proposed Oregon Center for Cyber Excellence
Wayne Machuca – Mt Hood Community CollegeCyber Security and Networking Program
Internet of ThingsSmart Toaster
Our Keynote Speaker mentioned the Internet of Things,
the Smart Toaster (and the Smart Cow….)
The following slides are from a student project
Stevens Institute of Technology
Internet of ThingsSmart Toaster User Interface
Smart Toaster All Essential Design Elements:
Human Computer Interface (HCI )+ Duct Tape (DT)
So, what is this “Cyber-Security Stuff”? Is it:
Technology NetworksHardwareEmbedded SystemsSoftware
Policy Threat AssessmentsRisk Management/InsuranceLegislationRegulation
Stakeholders IndividualsCommunitiesBusinessesGovernmentNo-ProfitsPublic Safety EntitiesEmergency Managers
Several Frameworks – NIST – ah, so it’s “technology”
Several Frameworks – FEMA (and others)– ah, so it’s “emergency management”
So, what is this “Cyber-Security Stuff”?
Broadband Comes of Age…!
And with it, come great benefits:Smart Communities, Smart Infrastructure,Business-Critical Applications,Mission-Critical Applications...
And, bad guys too, so:Threats, RisksLegal issuesCyber and Physical SecurityDisaster Recovery Planning
Moderator: Rick Williams – Leidos Corporation,supporting FirstNet in Oregon and SAIC
Panelists:Samantha Baltzersen – Cyber Intrusion Squad,
Federal Bureau of Investigation
Cheryl Hiemstra – Oregon Department of Justice
Lakshmi Diener – University of Portland
Tim Williams – Stevens Institute of Technology
David Childers – Proposed Oregon Center for Cyber Excellence
Wayne Machuca – Mt Hood Community CollegeCyber Security and Networking Program
The ThreatSpecial Agent Samantha Balterzen
FBI, Portland
Unclassified
CyberdivisionFederal Bureau of Investigation
OREGON DEPARTMENT OF JUSTICE
• Role of State Government • Civil Enforcement/Consumer Protection
Cheryl Hiemstra, Assistant Attorney General, Oregon Department of Justice
DATA BREACH LAW UPDATE• Senate Bill 601 (2015)• Definition of personal information• Enforcement• Notification – website forthcoming
Lakshmi DienerUniversity of Portland Senior
University of Portland Offerings• Law
– Communications Law as it relates to cybersecurity– Broad variety of topics, depth created by student
• Computer Science – topics in cyber security– confidentiality, integrity, availability, access control, and
defensive programming techniques.• Engineering – topics in cyber security
– Hardware, software, embedded systems, networks, SCADA, vulnerabilities, risk management.
Lakshmi DienerUniversity of Portland Senior
My Interests:• Communication Law
– Law as a means of creating cybersecurity
• Cellular metadata collection– Balance security from threats with security of information– Set clearer limits on metadata collection under the Electronic
Communications Privacy Act to preserve civil liberties
• Personal Next Step– Law School
• Undergraduate Offerings• Computer Engineering • Computer Science
• Masters• Cybersecurity
• Five-year Bachelor (BE/BS) + Masters (MS)• Limited enrollment• Five-year commitment by University upon admission
• Interests: Critical Infrastructure Protection
Tim WilliamsStevens Institute of Technology Senior
Scholarship For Service (SFS)
• Up to 3 Years of Scholarship
• Work for the Government* after Graduation*Federal, State, Local, or Tribal
SFS Schools
SFS Job/Internship Postings
Government Agencies – Register at sfs.opm.gov for more info
SFS Job Fair – January 12th to 14th in Washington DC
Oregon’s Center for Cyber ExcellenceDAVID CHILDERS, CCEP, CIPP
Why Oregon Needs a Cyber Center
• Cyber is much more than a “tech job”• Data breach is up 700% since 2010
• Cybersecurity specialists are the largest “talent gap” in the state of Oregon
• Our economic growth is tied to technology• We must educate and train cyber savvy graduates
• We must coordinate cyber education and training
• We must provide Internships and Apprentice programs and support for the NSF CyberCorps Scholarship for Service (SFS) Program
• We are currently leaving Federal & Grant dollars on the table
Revisiting HB2996Provides funding to create and establish the center
Function of the center is defined as:
(a)Providing services and expertise to Oregon businesses and government agencies to assist with the planning, preparation, management or assessment of or the response to cyber issues;
(b)Coordinating cyber-security education among post-secondary institutions of education in Oregon in order to create meaningful cyber-educational standards;
(c)Developing cyber-competitions and other programs to build practical workforce skills necessary to address cyber-management and cyber-security threats;
(d)Sharing cyber-expertise and disseminating best practices for cyber-education and cyber-safety;
(e)Facilitating cyber-security research; and
(f)Encouraging industry investment and partnership with post-secondary institutions of education and other career readiness programs.
Oregon is only one of 5 states that does not have a Cyber Center
• Oregon needs to continue to improve its Cyber-education offerings: local employers want practical solutions to improving cyber-expertise and better access to updated information and research
• Oregon needs a solution that will work here: Oregon doesn’t have a base of Federal Cyber-jobs, it does have Cyber-dependent Industries throughout the State. A new approach is needed to ensure the training and education needs of Oregon and the greater Northwest are met.
• Oregon needs to expand targeted Cyber-education for non-technical disciplines. The need for a strong education in Cyber-security extends beyond “technical disciplines”: to be successful, this must include a robust certification program involving our Community Colleges
Dr. Wayne MachucaMt. Hood Community College
• First and Only CyberSecurity Associate’s Degree in Oregon– CCNA, CCNA-Security, Security+, A+, Palo Alto
Networks Firewall ACE, AccessData Certified Examiner (ACE and MPE+), Oracle OCA
• Awarded CAE-2Y by NSA and DHS– Certificate for Academic Excellence for a 2-Year School– Awarded to only about 22 community colleges
nation-wide
Dr. Wayne MachucaMt. Hood Community College
• New Directions:– Protect systems and not just data– Critical Infrastructure / Big Data / Mobile Devices /
Internet of Things– [Weaponization] of the Internet
Again, what is this “Cyber-Security Stuff”?
Example: FirstNetCyber Security Appendix C-10
Cyber Security Topics · Key Concepts · Architecture · Lifecycle · Guidance · Systems Engineering · Risk Management· Incident Response and Security
Operations· Continuous Monitoring and Mitigation· Testing and Certification · Network Management and Configuration
Management Policy· Environmental and Physical Security· Information Security· Data Sensitivity
• Usability
• Mission Primacy
• Operational Security
• Responder Safety
• Reliability and Resiliency
• End-to-End Encryption
• Privacy
• Authentication
• Multi-Layer Security
Example: FirstNetCyber Security Appendix C-10
Broadband Comes of Age…!
And with it, come great benefits:Smart Communities, Smart Infrastructure,Business-Critical Applications,Mission-Critical Applications...
And, bad guys too, so:Threats, RisksLegal issuesCyber and Physical SecurityDisaster Recovery Planning
Moderator: Rick Williams – Leidos Corporation,supporting FirstNet in Oregon and SAIC
Panelists:Samantha Baltzersen – Cyber Intrusion Squad,
Federal Bureau of Investigation
Cheryl Hiemstra – Oregon Department of Justice
Lakshmi Diener – University of Portland
Tim Williams – Stevens Institute of Technology
David Childers – Proposed Oregon Center for Cyber Excellence
Wayne Machuca – Mt Hood Community CollegeCyber Security and Networking Program
Where are the Needs?
Where are the Jobs?
Where the Internships?
Who (and Where) are the Candidates?
Where are the Training and Education Pipelines?
Cyber Security Topics:
Where are the Needs?
Where are the Jobs?
Where the Internships?
Who (and Where) are the Candidates?
Where are the Training and Education Pipelines?
Technology NetworksHardwareEmbedded SystemsSoftware
Policy Threat AssessmentsRisk Management/InsuranceLegislationRegulation
Stakeholders IndividualsCommunitiesBusinessesGovernmentNo-ProfitsPublic Safety EntitiesEmergency Managers
Cyber Security Topics:
Pre-planned Q&A:
How are cybersecurity challenges different in industry than on an individual level?Critical Infrastructure: what does that include?
What are anticipated future challenges to creating comprehensive cybersecurity?What will the future hold for the development of cybersecurity? What are the greatest benefits to a Cyber Center of Excellence in Oregon? What will it take to get the Legislature to fund the Cyber Center?
What should Oregonians be considering in a more-and-more cyber enabled world?Internet of things: what’s that? (the Good, The Bad, and The Ugly)
Panel Q&A How are cybersecurity challenges different in industry than on an individual level?Critical Infrastructure: what does that include?
What are anticipated future challenges to creating comprehensive cybersecurity?What will the future hold for the development of cybersecurity? What are the greatest benefits to a cyber center in Oregon? What will it take to get the Legislature to fund the Cyber Center?
What should Oregonians be considering in a more-and-more cyber enabled world?Internet of things: what’s that? (the Good, The Bad, and The Ugly)
Panel Q&A How are cybersecurity challenges different in industry than on an individual level?Critical Infrastructure: what does that include?
What are anticipated future challenges to creating comprehensive cybersecurity?What will the future hold for the development of cybersecurity? What are the greatest benefits to a cyber center in Oregon? What will it take to get the Legislature to fund the Cyber Center?
What should Oregonians be considering in a more-and-more cyber enabled world?Internet of things: what’s that? (the Good, The Bad, and The Ugly)
Medical devices are often life-critical.Medical devices are complex technologies and are often networked enabled.Complex technologies included embedded systems and are often globally sourced.Who ensures the bad guys have not included vulnerabilities?
Audience Q&A
Panel Closing Remarks
So, what is this “Cyber-Security Stuff”? Is it:
Technology NetworksHardwareEmbedded SystemsSoftware
Policy Threat AssessmentsRisk Management/InsuranceLegislationRegulation
Stakeholders IndividualsCommunitiesBusinessesGovernmentNo-ProfitsPublic Safety EntitiesEmergency Managers
So, what is this “Cyber-Security Stuff”? Is it:
Technology NetworksHardwareEmbedded SystemsSoftware
Policy Threat AssessmentsRisk Management/InsuranceLegislationRegulation
Stakeholders IndividualsCommunitiesBusinessesGovernmentNo-ProfitsPublic Safety EntitiesEmergency Managers
YES, and more
Broadband Comes of Age…!
And with it, come great benefits:Smart Communities, Smart Infrastructure,Business-Critical Applications,Mission-Critical Applications...
And, bad guys too, so:Threats, RisksLegal issuesCyber and Physical SecurityDisaster Recovery Planning
Moderator: Rick Williams – Leidos Corporation,supporting FirstNet in Oregon and SAIC
Panelists:Samantha Baltzersen – Cyber Intrusion Squad,
Federal Bureau of Investigation
Cheryl Hiemstra – Oregon Department of Justice
Lakshmi Diener – University of Portland
Tim Williams – Stevens Institute of Technology
David Childers – Proposed Oregon Center for Cyber Excellence
Wayne Machuca – Mt Hood Community CollegeCyber Security and Networking Program
Top Related