jueves, 24 de septiembre de 2015

Best Practices in Cyber Supply Chain Risk Management, October 1-2, 2015

Best Practices in Cyber Supply Chain Risk Management, October 1-2, 2015

Information Technology Laboratory

Best Practices in Cyber Supply Chain Risk Management


On October 1-2, 2015, NIST will host a workshop to share information on Best Practices in Cyber Supply Chain Risk Management, which will provide insights on:
  • State of practice in several industry sectors;
  • Currently used tools, standards, and best practices;
  • How to establish a business case for integrating cyber supply chain risk management into organization's overall risk management processes;
  • How to communicate cyber supply chain concerns to executive leadership;
  • Synergies between quality, continuity, cybersecurity and other areas of risk that together help reduce overall risks to the organization.
Relevant case studies from companies such as Cisco, NetApp, P&G, John Deere, and many others will be reviewed for discussion at the workshop.
The NIST Framework for Improving Critical Infrastructure Cybersecurity ("the Framework") released in February 2014 was published simultaneously with the companion Roadmap for Improving Critical Infrastructure Cybersecurity. The Roadmap identified Supply Chain Risk Management as an area for future focus. Since the release of the Framework and companion Roadmap, NIST has researched best practices in supply chain security, cybersecurity, continuity and quality through engagement with industry leaders. This workshop will assist NIST in validating and expanding the findings from its research and help inform future versions of the Framework and other cybersecurity and supply chain risk management initiatives.
Related Projects:


Draft Agenda (updated 8/17/15)

Security Instructions:

If you are not registered, you will not be allowed on site. Registered attendees will receive security and campus instructions prior to the workshop.

NON U.S. CITIZENS PLEASE NOTE: All foreign national visitors who do not have permanent resident status and who wish to register for the above meeting must supply additional information. Failure to provide this information prior to arrival will result, at a minimum, in significant delays (up to 24 hours) in entering the facility. Authority to gather this information is derived from United States Department of Commerce Department Administrative Order (DAO) number 207-12. When registration is open, the required NIST-1260 form will be available as well. *New Visitor Access Requirement: Effective July 21, 2014, Under the REAL ID Act of 2005, agencies, including NIST, can only accept a state-issued driver’s license or identification card for access to federal facilities if issued by states that are REAL ID compliant or have an extension. Driver’s licenses from nine states and territories are not compliant and will not be accepted as identification. Click here for a list of alternative identification and further details>>

Related Project(s):

Supply Chain Risk Management Project (CSRC website)


Start Date: Thursday, October 1, 2015
End Date: Friday, October 2, 2015
Location: Administration Building (101), 100 Bureau Drive, Gaithersburg, MD
Audience: Industry, Government, Academia
Format: Workshop


Registration closes on 09/24/2015. All attendees must be pre-registered to gain entry to the NIST campus. Photo identification must be presented at the main gate to be admitted to the conference. International attendees are required to present a passport. Attendees must wear their conference badge at all times while on the campus. There is no on-site registration for meetings held at NIST.

Registration Contact:

Gladys Arrisueno, NIST Conference Manager, 301-975-5220


Holiday Inn- Gaithersburg
2 Montgomery Village Ave.
Gaithersburg, MD
(301) 948-8900
Block: NIST/Supply Chain Workshop
Book by September 16, 2015

Technical Contact:

No hay comentarios: