Carvers Steaks & Chops - Dayton Ohio |
The CyberSecurity User Group Meeting: Nov 9th, Dayton Ohio |
The theme of the Nov 9th meeting was The NIST Cybersecurity Framework.
Our Keynote Speaker was Dr. Loren Wagner, DIA, CISSP , Sr. Manager of Global Network Operations and Perimeter Security, at the Cooper Tire & Rubber Company, based in Findlay Ohio. Dr. Loren's doctoral thesis centered on the NIST CSF. He delivered a presentation titled "NIST Cybersecurity Framework | Research & Experiential Observations".
"Thank you" Dr. Loren, for a great presentation, and for sharing your research and knowledge with the group. We are all very grateful for your contribution, and for your commitment to studying and improving security and business. Your comment that "There is no security without business" is very true. I suppose the converse statement that there is no business without security is also true, perhaps more true now than its ever been, especially for some verticals.
"Thank you" Dr. Loren, for a great presentation, and for sharing your research and knowledge with the group. We are all very grateful for your contribution, and for your commitment to studying and improving security and business. Your comment that "There is no security without business" is very true. I suppose the converse statement that there is no business without security is also true, perhaps more true now than its ever been, especially for some verticals.
Dr. Loren's presentations slides can be downloaded HERE.
Dr. Loren Wagner |
Dr. Wagner - during his NIST CSF presentation - 11-9-2017 |
Short video Clip of Dr. Loren Presenting
As has become our custom, the keynote was followed by a group discussion moderated by another industry expert. In this case our round table moderator was Stacey Blanchard, IAM Practice Lead and Security Solution Architect for One Identity LLC. Stacey's round table topics also centered on the NIST Framework, and she lead an interactive discussion that mapped Identity & Access Management topics into the five core functions of the NIST CSF.
Thank you Stacey! It was an honor to have you lead what turned out to be a very interactive group discussion, and I hope you will speak for us again in the future.
Thank you Stacey! It was an honor to have you lead what turned out to be a very interactive group discussion, and I hope you will speak for us again in the future.
Stacey's round table slides can be downloaded HERE.
Round Table Moderator: Stacey Blanchard, IAM Practice Lead and Security Solution Architect |
Stacey Blanchard Moderates Round Table at 11-9-2017 User Group |
Short Video Clip - Stacey Blanchard - 11-9-2017
And last but not least, let's not forget our short IAM lesson. Recall the "Four A's" of IAM:
Each one of the "A's" has its own complexity and challenges, but the great complexity of Enterprise IAM is due to the fact that these "A's" must be performed for each user repository across the enterprise. In today's world, the number of user repositories can easily number in the hundreds, or thousands; this exponentiates the complexity of the IAM problem. The situation is further exacerbated by the fact that most organizations are now running both on-prem and cloud based user repositories.
So we have a complex problem to solve. But don't try to design a complex solution. Recall John Gall, and his law of System Design:
John Gall (September 18, 1925 - December 15, 2014) |
Start with simple working systems, and build from there.
Our next User Group meeting will be in Cleveland in December. Final arrangements are not yet confirmed, but it looks like we're zeroing in on Thursday December 14th in the downtown. I'll send a newsletter update with speaker information, topic abstracts, and registration form as soon as this is confirmed.
Gib Patt
Found & Coordinator
The Cybersecurity User Group
614 209 8516
gib.patt@oneidentity.com