filmov
tv
Predicting Changes to NIST SP 800-171 Revision 3
Показать описание
In this session from CS2 | Huntsville, hear from Summit 7's own Jacob Horne, Chief Cybersecurity Evangelist, as he predicts upcoming changes to NIST SP 800-171 Revision 3, with a live Q&A follow-up.
The Cloud Security and Compliance Series (CS2) is strictly for government contractors and those in higher education research institutions looking to meet cybersecurity regulations, address security threats, and glean best practices for their cloud investments.
Areas of focus for CS2 events include, but are not limited to
#CMMC 2.0
#NIST 800-171
The #DFARS 70 Series (7012, 7019, 7020)
#ITAR regulations
Handling #CUI and #FCI
And much more
Cloud Security and Compliance Series events are specifically curated towards aerospace and defense contractors and those in higher education institutions looking for practical approaches to address security threats, invest in the culture of cybersecurity for their organization, and glean best practices for their cloud investments.
Chapters:
(0:00 – 3:47): Introduction, Overview, Goals, & Agenda
(3:48 – 4:28): CMMC Key Concept
(4:29 – 6:30): FAR CUI Rule
(6:30 – 8:50): 800-171r3 Pre-Draft Comment Heat Map
(8:51 – 9:50): FIPS Validation Concerns
(9:51 – 11:00): DIBCAC Top 10 vs 171r3 Pre-Draft Comments
(11:01 – 14:28): Comments by Basic & Derived Requirements
(14:29 – 17:57): Out-of-scope comments
(17:58 – 20:11): DoD: Where to Submit Comments
(20:12 – 35:29): SP 800-53r4 Moderate Baseline Tailoring
(35:30 – 39:04): SP 800-171 vs SP 800-53
(39:05 – 46:06): SP 800-53r5 Moderate Baseline Changes
(46:07 – 47:59): Q&A: DFARS Rulemaking vs SP 800-171 Revisions
(48:00 – 50:14): Q&A: DIBCAC Statistics
(50:15 – 53:30): Q&A: DIBCAC vs VDI
(53:31 – 56:05): Q&A: SP 800-171 Revisions vs Rulemaking Timelines
(56:06 – 1:00:17): Q&A: Lack of Small Business Inputs in Public Comments
(1:00:18 – 1:02:33): Q&A: SP 800-171 vs CIA Triad
(1:02:34 – 1:04:12): Q&A: NIST CSF vs CMMC
(1:04:13 – 1:05:45): Q&A: DIBCAC vs BYOD
The Cloud Security and Compliance Series (CS2) is strictly for government contractors and those in higher education research institutions looking to meet cybersecurity regulations, address security threats, and glean best practices for their cloud investments.
Areas of focus for CS2 events include, but are not limited to
#CMMC 2.0
#NIST 800-171
The #DFARS 70 Series (7012, 7019, 7020)
#ITAR regulations
Handling #CUI and #FCI
And much more
Cloud Security and Compliance Series events are specifically curated towards aerospace and defense contractors and those in higher education institutions looking for practical approaches to address security threats, invest in the culture of cybersecurity for their organization, and glean best practices for their cloud investments.
Chapters:
(0:00 – 3:47): Introduction, Overview, Goals, & Agenda
(3:48 – 4:28): CMMC Key Concept
(4:29 – 6:30): FAR CUI Rule
(6:30 – 8:50): 800-171r3 Pre-Draft Comment Heat Map
(8:51 – 9:50): FIPS Validation Concerns
(9:51 – 11:00): DIBCAC Top 10 vs 171r3 Pre-Draft Comments
(11:01 – 14:28): Comments by Basic & Derived Requirements
(14:29 – 17:57): Out-of-scope comments
(17:58 – 20:11): DoD: Where to Submit Comments
(20:12 – 35:29): SP 800-53r4 Moderate Baseline Tailoring
(35:30 – 39:04): SP 800-171 vs SP 800-53
(39:05 – 46:06): SP 800-53r5 Moderate Baseline Changes
(46:07 – 47:59): Q&A: DFARS Rulemaking vs SP 800-171 Revisions
(48:00 – 50:14): Q&A: DIBCAC Statistics
(50:15 – 53:30): Q&A: DIBCAC vs VDI
(53:31 – 56:05): Q&A: SP 800-171 Revisions vs Rulemaking Timelines
(56:06 – 1:00:17): Q&A: Lack of Small Business Inputs in Public Comments
(1:00:18 – 1:02:33): Q&A: SP 800-171 vs CIA Triad
(1:02:34 – 1:04:12): Q&A: NIST CSF vs CMMC
(1:04:13 – 1:05:45): Q&A: DIBCAC vs BYOD
1:05:45
0:00:45
0:25:22
0:02:25
0:10:48
0:02:21
0:06:12
0:52:27
2:05:04
0:41:14
0:55:55
0:10:24
0:09:51
1:37:09
0:13:08
1:00:29
0:49:26
0:00:59
0:04:16
0:43:03
1:03:00
0:49:32
0:05:52
0:02:26