Cybersecurity Training Workshops: How to Implement NIST 800-171 Requirements

Cybersecurity Training Workshops: How to Implement NIST 800-171 Requirements

Cybersecurity Training Workshops: How to Implement NIST 800-171 Requirements

Date/Time
04/27/2021 - 06/08/2021
8:00 am - 12:00 pm

Location
Zoom Online


Description

Meet your NIST 800-171 compliance obligations as a prime or subcontract manufacturer for the defense industry by participating in the Cybersecurity Training Workshops, presented by your New England MEP Centers through the New England Regional Defense Industry Collaboration (NERDIC).

CONNSTEP, the Connecticut MEP Center, will lead all New England-based defense manufacturers through four separate half-day workshop training sessions that will prepare your organization to implement NIST 800-171 requirements on your own.

This workshop webinar series provides a comprehensive cyber threat overview, guidance on risk management planning, steps for policies and procedures documentation, and details to include in a system security plan.

Details

1) The workshops are conducted in four half-day online sessions, presented every other week starting on April 27th.

2) Each workshop topic is delivered on a Tuesday and again on a Thursday of the same week covering the same topic to give you a choice and schedule flexibility for you and your staff. Please choose either the Tuesday or Thursday track upon registering below.

3) Following payment of the series, you must register your employee(s) for all of the four, half-day workshop sessions. Each workshop is intended for different individuals and responsibilities within your business depending on the agenda topics being presented.

4) Fee: $500 – covers all four workshop sessions (a $4,500 value, subsidized thanks to a cybersecurity grant)

5) Your company must be in the defense supply chain with your facility located in Connecticut, Maine, Massachusetts, New Hampshire, Rhode Island, or Vermont.

Mitigating the cybersecurity risks and NIST 800-171 requirements facing defense industry manufacturers does not have to be a challenge.

Workshop Session Agendas


Session 1: Cybersecurity Management Team Overview

Dates: Tuesday, April 27 and Thursday, April 29 (same content both days)
Time: 8 am – 12 noon on each date
Suggested attendees: Business Owners, Management Staff, Senior Leadership

Agenda Overview

During this workshop session, you will be provided with a comprehensive understanding of current and future DoD cyber regulatory requirements and a briefing on the cyber threat landscape. You’ll also receive a review of the process and resource commitment necessary to comply with current requirements.

At the conclusion of Session 1, you will be given an assignment that serves as a prerequisite for Session 2. It will focus on identifying team members who will contribute to security compliance, understanding what Controlled Unclassified Information data is, and mapping out the IT infrastructure and operations processes in place that control the creative, storage, and transmission of data internally and to third parties (vendors and customers).

Session 2: Cyber Risk Management Plan Development

Dates: Tuesday, May 11 and Thursday, May 13 (same content both days)
Time: 8 am – 12 noon on each date
Suggested attendees: Business Owners, Operations Managers, Quality Managers

Agenda Overview

This workshop session will focus on developing a Risk Management Plan (RMP), covering the sections and content included in an RMP.

Topics covered will include properly documenting user roles and responsibilities and an in-depth discussion on the process of complying with NIST 800-171. It will address pre-assessment preparation tasks, GAP assessment, and reviews of System Security and Incident Response Plans. It will also cover compliance reporting in the Supplier Performance Risk System (SPRS).

Assignment at the end of session 2 involves completing a questionnaire focused on capturing organizational duties and placing into a roles and responsibilities matrix, as a prerequisite to session 3.

Session 3: Policies & Procedures Documentation

Dates: Tuesday, May 25 and Thursday, May 27 (same content both days)
Time: 8 am – 12 noon on each date
Suggested attendees: HR Managers, Operations Managers, IT Managers

Agenda Overview

This workshop session will focus on developing a Policies and Procedures Document.  It is intended to be a working session where each section of a completed policies and procedures document is reviewed in order for attendees to gain an appreciation and higher degree of understanding for the level of detail required for each section.

Session 4: Systems Security Plan Development

Dates: Tuesday, June 8 and Thursday, June 10 (same content both days)
Time: 8 am – 12 noon on each date
Suggested attendees: IT Managers and Staff with IT responsibilities

Agenda Overview

This workshop session will focus on the details included in a system security plan. It will be an interactive session that will result in a greater understanding of the topics outlined in the agenda when implementing the plan.

 

If you’re a New England-based defense manufacturer, register your company below today!

Please Note: Upon registration and payment, you will receive a follow-up email from CONNSTEP with links to provide the email address of each staff member attending each specific workshop.

 


New England MEP Centers

About the New England Regional Defense Industry Collaboration (NERDIC): NERDIC is a partnership of the state economic development organizations of Connecticut, Maine, Massachusetts, New Hampshire, Rhode Island, and Vermont, working to support Small and Medium-Sized Enterprises (SMEs) that provide parts, assemblies, to Tier One providers working with the U.S. Department of Defense. NERDIC has financial support from the Office of Local Defense Community Cooperation (OLDCC), US Department of Defense. The content reflects the views of the New England Collaborative and does not necessarily reflect the views of the Office of Local Defense Community Cooperation (OLDCC), the U.S. Department of Defense, or the participating states.

Bookings

This event is fully booked.