|
|
| Time |
2009 Symantec Government Symposium: Government 2.0 – Moving Forward Together
|
|
| 7:15 a.m. - 8:10 a.m. |
REGISTRATION AND BREAKFAST |
|
| 8:10 a.m. - 8:30 a.m. |
|
|
| 8:30 a.m. - 9:15 a.m. |
|
|
| 9:15 a.m. - 9:30 a.m. |
BREAK AND NETWORKING |
|
|
Secure and Transparent Government
Sponsored by Symantec |
Enterprise Assurance
Sponsored by General Dynamics Advanced Information Systems |
Information Management
Sponsored by Dell |
Virtualization
Sponsored by Red Hat |
Cloud Computing
Sponsored by HP |
Executive Forum
Sponsored by Symantec
|
|
| 9:30 a.m. - 10:45 a.m. |
Session A-1:
Assessing Security Standards Today
Session A-1: Assessing Security Standards Today
Tuesday, June 16, 2009 9:30-10:45 a.m.
Discussion topics:
- An update on the Federal Information Security Management Act (FISMA)
- A review of new standards and protocols, including Security Content Automation Protocol (SCAP), and their impact on INFOSEC
- An overview of the Consensus Audit Guidelines (CAG) and implications for FISMA compliance
- The pros and cons of utilizing an international security standards framework for standards
- Government case examples of agencies that are moving to architect resilient, secure infrastructures
- A review of ways to evaluate, implement, and measure the results of using new protection technologies to meet government standards
Gary Phillips, Senior Director, Standard Tools & Technologies, Office of the Chief Technology Officer, Symantec [Moderator]
Erik Hopkins, U.S. Senate Homeland Security and Governmental Affairs Committee
Ron Ross, Senior Computer Scientist and Information Security Researcher, National Institute of Standards and Technology (NIST), Department of Commerce (DOC)
Tony Sager, Chief, Vulnerability Analysis and Operations Group, Information Assurance Directorate, National Security Agency (NSA)
|
Session B-1:
Need to Know vs. Need to Share: Shared Threat Situation Awareness
Session B-1: Need to Know vs. Need to Share: Shared Threat Situation Awareness
Tuesday, June 16, 2009 9:30-10:45 a.m.
Discussion topics:
- How to improve context, timeliness, and value of public-private information exchange
- How to reconcile mandates for transparency with competing privacy and security considerations
- What agencies are doing to manage sensitive information where privacy is essential
Jim Jaeger, Director, Cyber Defense & Forensics, General Dynamics Advanced Information Systems [Moderator]
Dan Chenok, Senior Vice President, Pragmatics
Mischel Kwon, Director, United States Computer Emergency Readiness Team, National Cyber Security Division, Department of Homeland Security
John McCumber, Strategic Programs Manager, Public Sector, Symantec
Steven Shirley, Executive Director, Department of Defense Cyber Crime Center (DC3)
John Woods, Partner, Privacy and Information Management Practice, Litigation & Intellectual Property Practice, Hunton & Williams
Amit Yoran, Chief Executive Officer, NetWitness Corporation
|
Session C-1:
Data Retention and E-Discovery in a Web 2.0 World
Session C-1: Data Retention and E-Discovery in a Web 2.0 World
Tuesday, June 16, 2009 9:30-10:45 a.m.
Discussion topics:
- An overview of records retention today and how government agencies are preparing to meet growing search and retrieval requirements
- Emerging Federal requirements for information retrieval from agency desktops, laptops, servers, networked storage systems, mobile computing devices, and the cloud
- A review of the records management landscape and its expansion to include non-traditional records and new media types
- Priority considerations and challenges for IT, legal, and records management professionals as they implement enterprise data management programs
- Impacts of Administration goals for increased government transparency on e-discovery and e-records management policy and enforcement
- The unique privacy and security considerations for electronic health records, including patient, prescription, and institutional information
Max Peterson, Area Vice President, Civilian and Intelligence Agencies, Dell Federal [Moderator]
Larry Creech, Program Manager, Information Catalog Program, Corporate Information Security, Information Technology, U.S. Postal Service (USPS)
Edwin McCeney, Records Officer, Department of the Interior (DOI)
Jeanette Plante, Director, Office of Records Management Policy, Department of Justice (DOJ)
Catherine Teti, Managing Director for Knowledge Services, Chief Agency Privacy Officer, Government Accountability Office (GAO)
|
Session D-1:
Protecting the Virtual Environment
Session D-1: Protecting the Virtual Environment
Tuesday, June 16, 2009 9:30-10:45 a.m.
Discussion topics:
- Understanding the security risks and opportunities for virtual environments
- Implementing virtualized applications while improving enterprise security
- Protecting and virtualized devices through automated tools
- Preparing and continuously monitor secure virtualization implementations
Andrew Cathrow, Product Marketing Manager, Red Hat [Moderator]
Daud Santosa, Chief Technology Officer, National Business Center, Department of the Interior (DOI)
Ted Stinson, Vice President, Sales Specialists and Systems Engineering, Symantec
Steve Wright, Manager, Enterprise Services Office, Department of Labor (DOL)
|
Session E-1:
Maximizing Cost and Energy Savings with Green Computing
Session E-1: Maximizing Cost and Energy Savings with Green Computing
Tuesday, June 16, 2009 9:30-10:45 a.m.
Discussion topics:
- Ways that the cloud offers an efficient alternative to meet enterprise storage and computing demands
- Benefits of cloud computing to reduce data center investment and energy consumption costs
- Ways to set realistic expectations for potential savings, information access, and management
- Successful green computing implementations from government agencies, and why they work
Session Sponsored by DLT Solutions, Inc.
Edwin Piñero, Manager of Sustainable Development, Energy, Systems, and Security Division, Parsons Corporation [Moderator]
William Lay, Associate Chief Information Officer, IT Support Services, Department of Energy (DOE)
Mark Perkins, Chief Technology Officer, Technical Solutions Sales Manager, Sun Microsystems Federal Inc.
Van Ristau, Chief Technology Officer, DLT Solutions, Inc.
Mike Walker, President, Beacon Consulting Networks, Inc./ ENERGY STAR Technical Support Contractor
|
Session F-1:
Information Sharing: Collaboration Across Jurisdictions
Session F-1: Information Sharing: Collaboration Across Jurisdictions
Tuesday, June 16, 2009 9:30-10:45 a.m.
Discussion topics:
- Executive considerations for multi-jurisdictional collaboration
- Strategies for balancing information sharing and security across boundaries – from state and local to international organizations
- Critical areas for cooperation: homeland security, law enforcement, and social services
- Challenges to sharing information, including politics, culture, and interoperability
- Ways technologies can streamline collaborative initiatives
Introduction: Jim Russell, Vice President, Public Sector, Symantec
Mark Bregman, Executive Vice President, Chief Technology Officer, Symantec [Moderator]
Bob Gourley, Founder and Chief Technology Officer, Crucial Point LLC/ Former Chief Technology Officer, Defense Intelligence Agency (DIA)
Clark Smith, Executive for Programs and Technology, Office of the Program Manager, Information Sharing Environment (PM-ISE), Office of the Director of National Intelligence (ODNI)
Donald Upson, President, ICG Government/ Former Secretary of Technology, Commonwealth of Virginia
|
|
|
|
|
|
|
|
|
|
| 10:45 a.m. - 11:15 a.m. |
BREAK AND NETWORKING |
|
| 11:15 a.m. - 12:30 p.m. |
SESSION A-2:
Information Security: You Can’t Secure What You Don’t Manage
Session A-2: Information Security: You Can’t Secure What You Don’t Manage
Tuesday, June 16, 2009 11:15 a.m.-12:30 p.m.
Discussion topics:
- Holistic approaches to managing and securing government information assets for improved risk management
- Uses of data loss prevention tools to meet federal security mandates and ensure data integrity
- Recommended approaches for security architectures, training strategies, and policy enforcement
- Practical strategies to detect and block malicious software in real time
- Approaches to making the business case for cyberagility and ways to lower total cost of ownership
- Strategies for continuous monitoring and measuring organizational cyber security stature
Kevin Rowney, Founder, Data Loss Prevention Division, Symantec [Moderator]
Jaren Doherty, Associate Deputy Assistant Secretary, Office of Cyber Security, Department of Veterans Affairs (VA)
Holly Ridgeway, Director, Justice Security Operations Center, Department of Justice (DOJ)
Pete Stark, Manager, Corporate Information Security, U.S. Postal Service (USPS)
|
SESSION B-2:
Prioritize to Win: Critical Infrastructure Protection
Session B-2: Prioritize to Win: Critical Infrastructure Protection
Tuesday, June 16, 2009 11:15 a.m.-12:30 p.m.
Discussion topics:
- How to define critical infrastructure and appropriate security measures tailored to prevailing threats
- How to identify hierarchies and dependencies within and among critical infrastructure assets
- Lessons learned from recent incidents, breaches, and successful mitigations
- How to design more resilient, trustworthy cyber infrastructures
- Proven strategies for effective risk management program implementation
Matt Stern, Senior Cyberspace Operations Advisor, General Dynamics Advanced Information Systems [Moderator]
Richard Etter, Deputy Senior Information Assurance Officer, Computer Network Defense, Office of the Department of the Navy Chief Information Office (DON CIO)
David Hollis, Chief, Cyberspace Security Division, Defense-wide Information Assurance Program (DIAP), Office of Secretary of Defense (OSD), Department of Defense (DOD)
Carlos Kizzee, Director, Strategic Initiatives, Critical Infrastructure Cyber, Protection and Awareness Branch, National Cybersecurity Division (NCSD), Department of Homeland Security (DHS)
Evan Wolff, Director, Homeland Security Practice, Hunton & Williams
|
SESSION C-2:
COOP and the Virtual Environment
Session C-2: COOP and the Virtual Environment
Tuesday, June 16, 2009 11:15 a.m.-12:30 p.m.
Discussion topics:
- Disaster recovery fundamentals and common errors and omissions
- Ways that COOP programs, policies, and practices ensure more resilient and secure operating environments
- Implementing COOP for virtualized environment—what to consider and what’s different
- Essential components of effective COOP initiatives and why periodic exercises are mandatory
- Current technologies that enable mirroring, replication, and clustering across data centers
- COOP strategies designed to minimize downtime as well as deliver failover and data access
Session Sponsored by Lenovo
Cindy Auten, General Manager, Telework Exchange [Moderator]
Joseph Ganci, Director of Audit Operations, COOP Coordinator, Office of Inspector General, Department of Labor (DOL)
Stephen Hunter, Mission Assurance, National Aeronautics and Space Administration (NASA) Kennedy Space Center
Josh Sawislak, Senior Advisor to the Administrator, Acting Chief of the Office of Emergency Response and Recovery, General Services Administration (GSA)
|
SESSION D-2:
Management Strategies for Virtualization
Session D-2: Management Strategies for Virtualization
Tuesday, June 16, 2009 11:15 a.m.-12:30 p.m.
Discussion topics:
- The differences in managing and budgeting for virtual environments vs. the traditional data center
- Essential tools and expertise for managing virtualized devices
- Considerations for planning and executing migration to virtualization
- Ways virtualization changes internal system management processes and resource requirements
Session Sponsored by Sun Microsystems
Mark Perkins, Chief Technology Officer, Technical Solutions Sales Manager Sun Microsystems Federal Inc. [Moderator]
Byron Blocker, Director, IT&S Systems Integration Division, U.S. Government Printing Office
Harry Foxwell, Senior System Engineer, Sun Microsystems Federal, Inc.
Chris Runge, Director, Solutions Architects, Red Hat
|
SESSION E-2:
Security in the Cloud
Session E-2: Security in the Cloud
Tuesday, June 16, 2009 11:15 a.m.-12:30 p.m.
Discussion topics:
- Ways to implement secure cloud computing applications
- Inherent risks and common misconceptions about data management and storage in the cloud
- Proven strategies to identify potential security concerns and how to mitigate them
- Case study examples that demonstrate options for protecting cloud-based initiatives
Greig Fields, U.S. Federal Government Director of Strategic Sales, HP [Moderator]
Eran Feigenbaum, Director of Security, Google Apps
Peter Mell, Senior Computer Scientist, National Institute of Standards and Technology (NIST), Department of Commerce (DOC)
Shawn Sami, Federal Strategy Manager, HP
Jeremy Warren, Chief Technology Officer, Department of Justice (DOJ)
|
SESSION F-2:
Next Generation Government
Session F-2: Next Generation Government
Tuesday, June 16, 2009 11:15 a.m.-12:30 p.m.
Discussion topics:
- How government can prepare for the new generation workforce – and hire them
- How incoming employees embrace social networking and the impact on secure operations
- How to manage and support increasingly mobile government worker
- How the proliferation of Web 2.0 applications changes public sector processes and customer service
- How governments will use emerging technologies and the security considerations involved
Introduction: Gigi Schumm, Vice President and General Manager, Government Security Group, Symantec
Tom Temin, Editor, MeriTalk/ Media and Government Communications Consultant, Federal News Radio [Moderator]
Chris Kemp, Chief Information Officer, National Aeronautics and Space Administration (NASA) Ames Research Center
Andrew Krzmarzick, Senior Project Coordinator, Business Development, Graduate School, U.S. Department of Agriculture (USDA)
John Schueler, New Media Specialist, Department of Energy (DOE)
David Thompson, Group President and Chief Information Officer, Symantec Services Group, Symantec
|
|
|
|
|
|
|
|
|
|
| 12:30 p.m. - 2:15 p.m |
LUNCH
LUNCHEON KEYNOTE
Melissa Hathaway, Acting Senior Director for Cyberspace, National Security and Homeland Security CouncilsIntroduction: Enrique Salem, President and Chief Executive Officer, Symantec
|
|
| 2:15 p.m. - 2:30 p.m |
BREAK AND NETWORKING
|
|
| 2:30 p.m. - 3:45 p.m. |
SESSION A-3:
Emerging Cybersecurity Policy Priorities
Session A-3: Emerging Cybersecurity Policy Priorities
Tuesday, June 16, 2009 2:30-3:45 p.m.
Discussion topics:
- Results of the Obama Administration cyber review and other recent cyber security policies and activities
- Anticipated changes in current policies and implications for agency cyber security operations
- Current legislation focused on information security for the public and private sectors
- Identification of who within the Administration and on the Hill is leading the charge and what their priorities are
- Discussion on identity management directives are being implemented and enforced
Tiffany Jones, Director of Government Relations, Americas, Symantec [Moderator]
Sameer Bhalotra, Professional Staff Member, U.S. Senate Select Committee on Intelligence
Chan Lieu, Senior Professional Staff Member, U.S. Senate Committee on Commerce, Science, and Transportation
Jacob Olcott, Subcommittee Director, U.S. House of Representatives Homeland Security Committee
|
SESSION B-3:
The Weakest Link: Security Software Supply Chain Vulnerabilities
Session B-3: The Weakest Link: Security Software Supply Chain Vulnerabilities
Tuesday, June 16, 2009 2:30 - 3:45 p.m.
Discussion topics:
- Ways to ensure the integrity of IT infrastructure, including Commercial-Off-the-Shelf (COTS) software
- Threats posed by so-called "fifth column" software development
- Steps underway to provide International Certification and Accreditation (C&A) to software
- An overview of public-private initiatives underway to safeguard software used by government agencies
- Ways the Federal government's procurement strategy may address software integrity and supply chain vulnerabilities
Jim Flyzik, President, TheFlyzikGroup [Moderator]
Jack Danahy, Chief Technology Officer, Ounce Labs
Gunnar Hellekson, Lead Architect , Red Hat Government
Mitchell Komaroff, Director, Globalization Task Force (GTF), Assistant Secretary of Defense for Networks and Information Integration, Department of Defense Chief Information Office (DOD CIO)
Kurt Seidling, Program Manager, Global Supply Chain Risk Management, Department of Homeland Security (DHS)
|
SESSION C-3:
The Comprehensive National Cybersecurity Initiative: What’s Next?
Session C-3: The Comprehensive National Cybersecurity Initiative: What’s Next?
Tuesday, June 16, 2009 2:30-3:45 p.m.
Discussion topics:
- Where the new leadership will take the Comprehensive National Cybersecurity Initative
- Envisioning a management structure for government- and agency-wide cybersecurity programs
- Understanding the components of the Initiative
- How cybersecurity investments and performance will be measured – bringing some degree of transparency to a clouded process
- Federated approaches to meeting Federal, state, and regional cybersecurity objectives
Joe Ayers, Area Vice President, Dell Federal [Moderator]
Susan Alexander, Chief Technology Officer, Information and Identity Assurance, Office of the Assistant Secretary of Defense Networks and Information Integration, Department of Defense (DOD)
William Crowell, Security Consultant/Former Deputy Director, National Security Agency (NSA)
Bruce McConnell, Independent Cybersecurity and Government 2.0 Consultant
William Vajda, Senior Advisor, Joint Interagency Cybersecurity Task Force
|
SESSION D-3:
Virtualization from the Desktop to the Data Center
Session D-3: Virtualization from the Desktop to the Data Center
Tuesday, June 16, 2009 2:30-3:45 p.m.
Discussion topics:
- Ways to evaluate as-is data center performance and potential improvements with virtualization
- The combined potential of consolidation and virtualization to maximize IT resources
- Government case studies that show the benefits of server, storage, and desktop virtualization
- Ways emerging Web 2.0 applications will impact current and future information operations
- Ways virtualized environments support changing workload requirements
- New approaches to an established practice—today’s strategies for thin client architectures
Michael Ferris, Director of Desktop Virtualization, Red Hat [Moderator]
Stan Bigsby, Solutions Architect, HP
Daniel Menasce, Senior Associate Dean, George Mason University
Jack Nichols, Director of Enterprise Operations, Office of the Chief Administrative Officer, U.S. House of Representatives
|
SESSION E-3:
Best Practices: Extending IT To The Clouds
Session E-3: Best Practices: Extending IT to the Clouds
Tuesday, June 16, 2009 2:30-3:45 p.m.
Discussion topics:
- What applications are most suitable for cloud computing and why
- Practical steps for migrating selected data and services to the cloud
- Strategies for integrating cloud solutions with existing computing infrastructures
- Back-up and recovery considerations for cloud-based applications
Michael Donovan, Enterprise Architect and Chief Technologist, EDS, an HP Company [Moderator]
Joel Berman, Senior Director, Global FIeld Marketing, Red Hat
David Linthicum, Founder, Blue Mountain Labs
Patrick Stingley, Chief Technology Officer, The Bureau of Land Management, Department of the Interior (DOI)
|
|
|
|
|
|
|
|
|
|
|
| 4:00 p.m. - 6:30 p.m |
After-Symposium Reception: Aria Trattoria (4:00 p.m. - 6:30 p.m.)
|
|
|
|
|
|
