RSVP and Information: https://conta.cc/32QDEvg
00:00:00 AIAA LA-LV Introduction
00:05:21 Mr. Scott Niebuhr (Presentation)
01:15:00 Q&A
01:57:05 Adjourn
AIAA LA LV Section 2/23/2022 Section (Town Hall) e-Meeting:
------------------------------------------------------------
Protecting Critical Technologies
(Aerospace Cybersecurity)
by
Mr. Scott Niebuhr
------------------------------------------------------------
YouTube AIAA LA-LV Channel: https://www.youtube.com/channel/UCCJrx_vB7oxnU6T1yinEapg
Video Recording on YouTube: https://youtu.be/fhtIWYjjAis
On AIAA LA-LV Website: (with additional information)
https://www.aiaa-lalv.org/2022-february-23-protecting-critical-technologies-aerospace-cybersecurity-by-mr-scott-niebuhr%ef%bf%bc/
Also on https://aiaa-lalv.org/video and,
On the AIAA LA LV Section Engage website: (with additional information)
https://engage.aiaa.org/viewdocument/2022-february-23-protecting-criti
———————
AIAA LA-LV Podcasts (audio): (also see the audio recording upload below)
https://rss.com/podcasts/aiaa-losangeles-lasvegas/401980/ (This event)
https://rss.com/podcasts/aiaa-losangeles-lasvegas/
https://podcasts.google.com/feed/aHR0cHM6Ly9tZWRpYS5yc3MuY29tL2FpYWEtbG9zYW5nZWxlcy1sYXN2ZWdhcy9mZWVkLnhtbA
https://podcasts.apple.com/us/podcast/aiaa-los-angeles-las-vegas-section-podcast/id1591544966 (Ranked #101 in Canada Podcast in Non-Profit Category)
https://open.spotify.com/show/4Uvslv07JHgBDUa3HkxmbO
———————
Event Calendar
http://events.r20.constantcontact.com/calendar/monthview?eso=0010gqoU-_jblZTmCh7qkkm8w%3D%3D&llr=p9tbt6cab
Join Mailing List https://lp.constantcontactpages.com/su/FnG0zoy
Upcoming Events https://aiaa-lalv.org/events
Join AIAA Membership https://aiaa.org/membership
———————
AIAA LA-LV and AIAA Websites
https://aiaa-lalv.org
https://engage.aiaa.org/losangeles-lasvegas
https://engage.aiaa.org
————————-
References provided by the Speaker:
DoDI 5200.39, “Critical Program Information (CPI) Identification and Protection Within Research, Development, Test, and Evaluation (RDT&E)”, 01 October 2020
DoDI 5200.44, “Protection of Mission Critical Functions to Achieve Trusted Systems and Networks (TSN)”, October 2018
DoDI 5200.48, “Controlled Unclassified Information (CUI)”, 6 March 2020
DoDI 5220.22, “National Industrial Security Program (NISP)”, USD(I&S), 24 September 2020
DoDI 5230.24, “Distribution Statements on Technical Data”, 15 October 2018
CNSSI 1253, “Security Categorization and Control Selection for National Security Systems”, 27 Mar 2014
ISO/IEC/IEEE Standard 15288, “Systems and Software Engineering,” 05 May 2015
ISO 17666:2016, “Space Systems – Risk Management”, 1st Ed., 01 November 2016
MIL-STD-882E, “Department of Defense Standard Practice: System Safety”, 11 May 2012
NIST SP800-30, “Guide for Conducting Risk Assessments,” Rev 1, Sep 2012
NIST SP800-37, “Guide for Applying the Risk Management Framework to Federal Information Systems,” Dec 2018
NIST SP800-53, “Security and Privacy Controls for Federal Information Systems and Organizations,” Revision 5, December 2020
NIST SP800-59, “Guideline for Identifying an Information System as a National Security System,” 20 August 2003
NIST SP800-161, “Supply Chain Risk Management Practices for Federal Information Systems and Organizations,” Apr 2015
NIST SP800-171, “Protecting Controlled Unclassified Information in Nonfederal Information Systems and Organizations,” Rev. 2, 7 June 2018
Supervisory control and data acquisition (SCADA)
https://en.wikipedia.org/wiki/SCADA
Scott Niebuhr
https://smniebuhr.com/
https://www.linkedin.com/in/scottniebuhrciso/
https://www.rand.org/pubs/research_reports/RRA425-1.html
New ISA/IEC 62443 standard specifies security capabilities for control system components –
https://www.isa.org/intech-home/2018/september-october/departments/new-standard-specifies-security-capabilities-for-c
SBOMs –
https://www.ntia.gov/files/ntia/publications/ntia_sbom_formats_and_standards_whitepaper_-_version_20191025.pdf
https://www.bluevoyant.com/
References:
Course:
https://www.cdse.edu/Training/eLearning/DAU-ACQ160/
PPP Template =
https://acqnotes.com/wp-content/uploads/2018/04/PPP-Outline-and-Guidance-v1-July2011.pdf
PPP =
https://www.dau.edu/guidebooks/shared%20documents/chapter%209%20program%20protection.pdf
CPI =
https://www.dau.edu/tools/se-brainbook/Pages/Management%20Processes/Critical-Program-Information-Risk-Assessment.aspx
Commercial Alignment
ISO 22301:2019 - Security And Resilience - Business Continuity Management Systems - Requirement
https://webstore.ansi.org/Standards/ISO/ISO223012019?gclid=CjwKCAiAsNKQBhAPEiwAB-I5zVgeflpTLxw8ZKplqNYGZlG6Fd3uUqSoZ1y8jIMiuzZ7iYuyMHtXOBoCc-UQAvD_BwE
“Business impact analysis for business continuity: Evidence from Romanian enterprises on critical functions” -Vol. 13, No. 3, Autumn, pp. 1035-1050, ISSN 1842-0206 | Management & Marketing. Challenges for the Knowledge Society
https://spectrum.ieee.org/how-the-boeing-737-max-disaster-looks-to-a-software-developer
ISO 2700 series
DHS = CISA