Upcoming Event: SheLeadsTech...with Expertise | Elevating Security Resilience: An Overview of OSCAL- based automation
Date: April 19, 2024
Time: Time: 12:00 PM - 1:00 PM CT
Dear ISACA Chicago Members and Community,
The SheLeadsTech… with EXPERTISE program has been designed to support women in enhancing their knowledge of areas under the ISACA Curriculum.
We have invited Dr. Iorga, to discuss the topic of Elevating Security Resilience: An Overview of OSCAL- based Automation on February 16, 2024, @ noon central time.
The current exponential increase in the complexity of IT systems is a daunting task for security professionals. Demonstrating compliance with various regulatory frameworks that occasionally provide mutually exclusive guidance and controls, performing paper-based work, or using GRC tools that do not interoperate, and which require the information to be manually imported is error-prone, does not scale and generates data often outdated days after such data has been collected.
There is no shortage of information available to security practitioners on what they should do to secure their infrastructure. But all this information and oversight results in competing priorities, opinions, and claims that can distract an enterprise from vital actions. We are in an era of multiple competing regulatory and security frameworks and security practitioners can only strive in this ecosystem if not relying on the next-generation security automation employing standards-based information digitalization and compliance as code.
A faster, more accurate, repeatable system security assessment with NIST’s Open Security Controls Assessment Language (OSCAL) is undeniably the next-generation security automation that elevates all those challenges. OSCAL establishes machine-readable control representations across a set of prioritized actions that organizations can take to assess and improve their current security state.
This talk will introduce security automation with OSCAL, starting with OSCAL models, and the risk management content produced and consumed to mitigate risk and demonstrate compliance.
We are pleased to introduce our guest speaker, Dr. Michaela Iorga (Fed)
Dr. Michaela Iorga is a supervisory computer scientist at the National Institute of Standards and Technology (NIST/ITL). She serves as the Strategic Outreach Director for the Open Security Controls Assessment Language (OSCAL) program, and as the senior security technical lead for cloud computing, chairing the NIST Cloud Security and Forensics Working Groups.
Dr. Iorga, a subject matter expert in cybersecurity, risk assessment, and information assurance, collaborates with industry, academia, and other government stakeholders on developing and disseminating high-level, vendor-neutral cybersecurity and forensics guidelines that meet national priorities and promote American innovation and industrial competitiveness. Dr. Iorga received her Ph.D. from the Duke University/ Pratt School of Engineering, in North Carolina, USA.
Read more: https://www.nist.gov/people/dr-michaela-iorga
1 CPE credit will be earned by participating in this webinar.
Duration - 60 mins
Note: ISACA Members are requested to register with the same email ID as that in your ISACA profile for direct CPE uploads.
Time: April 19, 2024, 12 PM - 1 PM in Central Time (US and Canada)
**Click on the "Register Now" button below to register and for more information about the SLT Program.
SheLeadsTech Committee- ISACA Chicago Chapter
Ramona Ratiu- MS, CISM, CISA, GSTRT
Program Founder- SheLeadsTech…with EXPERTISE
Strategic Advisor// Past- President- ISACA Chicago Chapter