Cybersecurity Metrics Workshop - Panel Discussions

Posted: 11/11/2014 | Presenters: Dr. Paul Losiewicz, Richard “Rick” Aldrich, Dr. Kenric P. Nelson, Dr. John Bay, Leonard Popyack, PhD | Leave a Comment

Notice: This podcast video may contain personal or third-party views and opinions not associated with the government.
Please see our terms of use located here: https://www.csiac.org/csiac-terms-of-use/

Moderator: Dr. Paul Losiewicz, Quanterion Solutions, Inc.

Panelists: Richard Aldrich (Booz Allen Hamilton), Dr. Kenric Nelson (Raytheon), Dr. John Bay (Cyber Research center),Dr. Len Popyack (Utica College)

The Cyber Security Metrics Workshop is a one-day review of current trends in policy, tools and techniques of interest to managers and Cyber Security professionals useful in measuring ones cyber security vulnerability. The workshop provides an overview of the current state of understanding of what is presently available and will focus on what research needs to be done to develop robust and easy to use techniques to assess and monitor cyber preparedness and vulnerability.

Areas of particular interest to DoD are:
-Latest DoD Policy and Guidance
-DoD Training Evaluation Standards for Specific Cyber Missions
-DoD Critical Infrastructure Protection (CIP) Vulnerability Assessment
-Cyber Range Standards
-Impact of NIST Standards on Certification & Accreditation of critical systems
-Agency performance metrics

Presenters

Dr. Paul Losiewicz

Dr. Paul Losiewicz

Senior Scientific Advisor at Quanterion Solutions Incorporated and the Cybersecurity and Information Systems Information Analysis Center (CSIAC). Dr. Losiewicz was formerly the Science and Technology Attaché at the US Embassy Prague, Czech Republic, serving as the Technical Lead for the Office of Naval Research Global (ONRG) Regional Engagement Office. Prior to serving overseas, Dr. Losiewicz was a Program Manager at the Air Force Research Laboratory in Rome, NY. Dr. Losiewicz has a Bachelors from the University of Colorado Boulder, a Masters from the University of Notre Dame and a Ph.D. from The University of Texas at Austin in Cognitive Science.

Richard “Rick” Aldrich

Rick Aldrich is a senior cyber policy analyst with the Cyber Security and Information Systems Information Analysis Center (CSIAC). He is also a Cyber Security Policy & Compliance Analyst for Booz Allen Hamilton, supporting the Department of Defense (DoD) Chief Information Officer (CIO). He works on cybersecurity, policy, metrics, cyberlaw, and privacy issues. He has been awarded several grants by the Institute for National Security Studies to research the legal and policy implications of cybercrime and cyber warfare. He has multiple publications in this field, including a chapter on information warfare in the widely used textbook, National Security Law. He has presented at several national and international conferences, including most recently a conference at NATO. He was a co-author of DoD’s award-winning CyberLaw 1 computer-based training product and the subsequent CyberLaw 2 product. He led an effort to create DoD Cybersecurity Scorecards that are reported monthly to the Secretary of Defense. Prior to his current position he served as the Deputy Staff Judge Advocate for the Air Force Office of Special Investigations, specializing in the cybercrime and information operations portfolios. He was also recognized as the “Outstanding Professor of Law” at the US Air Force Academy, where he was one of the first in the nation to establish an undergraduate course in Cyberlaw. He has a Bachelor of Science degree in Computer Science from the United States Air Force Academy, a Juris Doctor from UCLA, and a Masters of Law in Intellectual Property Law from the University of Houston. He is licensed to practice before the United States Supreme Court and the Supreme Court of California. He also holds CISSP, CIPT, and GLEG certifications.

Dr. Kenric P. Nelson

Dr. Kenric P. Nelson

Dr. John Bay

Dr. John Bay is the Executive Director of the Cyber Research Institute (CRI) in Rome, NY. The CRI is a not-for-profit research corporation chartered by the State of New York to perform and disseminate cybersecurity research in the public interest. In the past, Dr. Bay has been a Professor Electrical and Computer Engineering, a DARPA Program Manager, Chief Scientist of the AFRL Information Directorate, and has held senior positions in large and small businesses. He is an IEEE Fellow for his contributions to model-based embedded systems.

Leonard Popyack, PhD

Leonard Popyack, PhD

Leave a Comment Cancel

You must be logged in to post a comment.

CSIAC Journal - Launching Innovation Through Medical Modeling and Simulation Technologies

This edition of the CSIAC Journal highlights three very different views of complex situations where AI might, should, and does intersect with our ability to use AI effectively.

Read the Journal

The DoD Cybersecurity Policy Chart

This chart captures the tremendous breadth of applicable policies, some of which many cybersecurity professionals may not even be aware, in a helpful organizational scheme.

View the Policy Chart

CSIAC Report - JFAC/DAU/CSIAC Cyber Experiment (CYBEX)

This report details key concerns discussed during the JFAC/DAU/CSIAC Software Assurance (SwA) Cyber Experiment (CYBEX). In addition to evaluating newly developed SwA guides for program managers and developers, the exchange included addressing/bringing back foundational software/system engineering concepts to address root of fundamental SwA issues as well as adopting common language in the areas of functionality and risk in order to identify issues early.

Read the Report

CSIAC Report - Emerging Developments in Cyberlaw: 2019

CSIAC SME and member of the American Bar Association’s Information Security Committee, Richard “Rick” Aldrich, gives a snapshot of emerging developments in cyberlaw, policy, standards, court cases and industry legal frameworks. These slides focus on emerging issues such as consumer privacy rights, forensic border search of computers, search consent, biometrics, expectations of privacy from cloud providers, and cyber insurance.

View the Slides