DOCUMENT
CISA CSD Industry Day (Nov 15 2022).pdf
OVERVIEW
Original Source
Contract Opportunity
Related Opportunity
Related Agency
Posted
Jan. 26, 2023
Type
.pdf
Size
1.77MB
Profiled People
DOCUMENT PREVIEW
EXTRACTED TEXT
C I S A | C Y B E R S E C U R I T Y A N D I N F R A S T R U C T U R E S E C U R I T Y A G E N C Y
WELCOME! Cybersecurity Division (CSD)
Virtual Industry Day
November 15, 2022
Hosted By the Office of the Chief Acquisition Executive (OCAE)
November 15, 2022
CSD Virtual Industry Day 1 (Nov 15, 2022) - Agenda
Time - EST
1:00 PM 1:05 PM
Welcome & Introduction
Topic
1:05 PM 1:10 PM
Opening Remarks
1:10 PM 1:20 PM
1:20 PM 1:30 PM
CISA Office of the Chief Technology
Officer (OCTO)
DHS Office of the Chief Security Officer
(OCSO) Classified Critical Infrastructure
Protection Program (CCIPP)
1:30 PM 1:40 PM
Cybersecurity Division (CSD) Overview
1:40 PM 1:50 PM
1:50 PM 2:00 PM
CSD Office of the Chief of Staff (OCOS)
FY23 Overview
CSD Office of the Technical Director (OTD)
FY23 Overview
Speaker
Dr. Luicana Nicole Turner, Office of the Chief
Acquisition Executive (OCAE)
David Patrick, CISA Chief Acquisition Executive
Dr. Garfield Jones, CISA Associate Chief
Technology Officer
Michael Ness, CCIPP Program Manager, DHS
OCSO Strategy Analysis & Risk
Management Branch
Matt Hartman, Deputy Executive
Assistant Director for CSD
Alyson Conley, Chief of Staff for CSD
John Simms, Security Architect
November 15, 2022
CSD Virtual Industry Day 1 (Nov 15, 2022) - Agenda
Time - EST
2:00 PM 2:10 PM
2:10 PM 2:20 PM
2:20 PM 2:30 PM
2:30 PM 2:40 PM
2:40 PM 2:50 PM
2:50 PM 2:55 PM
Topic
CSD Capacity Building (CB) / Cyber
Defense Education & Training (CDET) FY23
Overview
CSD Capability Delivery (CD) FY23 Overview
CSD Joint Cyber Defense Collaboration
(JCDC) FY23 Overview
CSD Threat Hunt (TH) FY23 Overview
CSD Vulnerability Management (VM)
FY23 Overview
Summary Remarks
2:55 PM 3:00 PM
Next Steps
Speaker
Cristen Winegrad, Deputy
Branch Chief, Acquisition & Budget
Dan Ritz, Program Manager & Allison Evans,
Deputy Program Manager
Erin Shepley, Partnerships Branch Chief
Shaun Grant, Branch Chief, Business
Operations Branch
Kirk Lawrence, Program Manager
David Patrick, OCAE and Alyson Conley, Chief
of Staff for CSD
Dr. Luicana Nicole Turner, OCAE
November 15, 2022
CSD Virtual Industry Day 2 (Nov 16, 2022) - Agenda
Time - EST
Topic
Speaker
11:00 AM 11:45 AM CSD Vulnerability Management (VM)
Kirk Lawrence, Program Manager
1:00 PM 1:45 PM
Maturing the Organization
Alyson Conley, Chief of Staff for CSD
2:30 PM 3:15 PM
CSD Resourcing the Industry - "How we
engage industry for potential support"
Jay Robinson, Chief of CSD Contracts
Management Office
November 15, 2022
CSD Virtual Industry Day 3 (Nov 17, 2022) - Agenda
Time - EST
Topic
11:00 AM 11:45 AM DHS Office of the Chief Security
2:30 PM 3:15 PM
Officer (OCSO) Strategy, Analysis and Risk
management (SARM) Q&A Session
CISA Office of the Chief Technology
Officer (OCTO) Q&A Session
Speaker
Michael Ness, Classified Critical Infrastructure
Protection Program (CCIPP) Program Manager,
and Kim Colon, Branch Chief, SARM Branch
Dr. Garfield Gary Jones, CISA Associate Chief
Technology Officer
November 15, 2022
C Y B E R S E C U R I T Y &
I N F R A S T R U C T U R E
S E C U R I T Y A G E N C Y Office of the Chief Acquisition Executive
DEPUTY CAE
PROCUREMENT / CHIEF OF THE CONTRACTING OFFICE
C o m m i t m e n t t o I n d u s t r y E n g a g e m e n t :
Industry Days
Capability focused
Breakouts for Q&A
CISA Vendor Engagement Program
Increasing engagements
Improving quality
Key Links:
Doing Business With CISA:
https://www.cisa.gov/doing-business-cisa
CISA Vendor Engagement Program:
CISAVendorEngagement@cisa.dhs.gov
Acquisition Planning Forecast System:
https://apfs-cloud.dhs.gov
SAM.GOV:
https://sam.gov/content/home
CHIEF ACQUISITION EXECUTIVE (CAE)
DAVID PATRICK
JUAN ARRATIA
DEPUTY CAE
BUSINESS OPERATIONS
CHRISTIAN VAN GINDER
DEPUTY CAE
ACQUISITION PROGRAM GOVERNANCE
TIMOTHY RUNFOLA
KEY FUNCTIONS
SUPPORT, EXECUTION, &
GOVERNANCE;
POLICY & PROCEDURE;
WORKFORCE DEVELOPMENT;
DATA & REPORTING; and
ORGANIZATIONAL DEVELOPMENT
C I S A | C Y B E R S E C U R I T Y A N D I N F R A S T R U C T U R E S E C U R I T Y A G E N C Y
CISA CHIEF TECHNOLOGY OFFICER
Dr. Garfield Gary Jones
CISA Associate Chief Technology Officer
November 15, 2022
CISA CTO Mission and Vision
Mission:
To identify and influence
emerging technology and
data that continually
improves CISAs
management of our
Nations risk to cybersecurity
and critical infrastructure
Vision:
Distinct technological
advantage for CISA
mission and operators
November 15, 2022
Chief Technology Officer
3 Focus Areas
Data
Enterprise Arch
Strategic Tech
3 Perspectives for Tech
Ours
Partners
Adversaries
November 15, 2022
Understanding the Opportunities
https://www.cisa.gov/publication/strategic-technology-roadmap-overview
November 15, 2022
C I S A | C Y B E R S E C U R I T Y A N D I N F R A S T R U C T U R E S E C U R I T Y A G E N C Y
DEPARTMENT OF HOMELAND SECURITY
(DHS) OFFICE OF THE CHIEF SECURITY
OFFICER, STRATEGY, ANALYSIS AND RISK
MANAGEMENT (SARM)
Michael Elliot Ness
Classified Critical Infrastructure Protection Program (CCIPP)
Program Manager
November 15, 2022
Mission and Vision
Vision: Protect National Security through a robust
Departmental Industrial Security Program
Mission: To ensure that cleared U.S. defense industry
safeguards classified information in their possession that is
vital to our national security and the integrity of the Homeland.
Create a partnership with our industry stakeholders to
continuously monitor and improve security of classified
information in support of national security and the warfighter
November 15, 2022
Organizational Chart
NSSD
Director
NSSD Deputy
Director
Operations Branch
Chief
SARM Branch
Chief
Security
Specialist
Security
Specialist
Senior Security
Specialist
Program Analyst
Program Analyst
Program Analyst
Program Analyst
Program Analyst
Program Analyst
November 15, 2022
Functions
CCIPP was originally created from Executive Order (E.O) 13961,
Promoting Private Sector Cybersecurity Information Sharing, dated
February 2015
Management and Oversight of the Departments Classified Critical
Infrastructure Protection Program - CCIPP
Support CISAs Cyber Information Sharing and Collaboration Program
(CISCP) to include Sector Risk Management Agency representatives and
CISA Central
Facilitate and coordinate Cybersecurity Information Sharing and
Collaboration Agreements (CISCAs) to ensure shared classified
cyberthreat information is properly safeguarded
Conduct Risk Analysis Assessments involving defense industry base and
private industry companies (outside of traditional NISS FCL processes)
November 15, 2022
Classified Critical Infrastructure Protection Program
CCIPP is/was built to support CISAs National Cybersecurity and
Communications Integration Center (NCCIC) aka, CISA Central and its
supporting Sector Risk Management Agencies
CCIPP provides another vehicle to share information with private industry
primarily used for classified cyberthreat information
Developed and deployed electronic-Tracked Records of Adjudicated
Companies (e-TRAC) - SORN to process and vet program participants
We offer business analytical tools & assessments
In-depth research by program analysts - provides CISA and program
participants supplementary information for decisionmakers
Detailed risk assessment reports
November 15, 2022
C I S A | C Y B E R S E C U R I T Y A N D I N F R A S T R U C T U R E S E C U R I T Y A G E N C Y
CYBERSECURITY DIVISION (CSD)
OFFICE OF THE EXECUTIVE ASSISTANT
DIRECTOR
Matt Hartman
Deputy Executive Assistant Director for CSD
November 15, 2022
C Y B E R S E C U R I T Y &
I N F R A S T R U C T U R E
S E C U R I T Y A G E N C Y
MISSION PRIORITIES
Cybersecurity
Division
The Cybersecurity Division
(CSD) assures the security,
resilience, and reliability of the
nations cyber systems.
Cyber Defense Operations
CISA identifies, detects, assesses, and responds to urgent cybersecurity
risks through information sharing, deployment of detective and preventive
technologies, and by providing incident response and hunt capabilities to
help the nation respond to and minimize impacts of significant incidents.
Risk Management and Resilience
CISA provides tools, services, and expert guidance to drive cybersecurity
risk management and build resilience by addressing systemic risk and
helping organizationsparticularly those performing National Critical
Functions (NCFs) operate safely and reliably even when being targeted
by adversary activity.
Cyberspace Ecosystem Advancement
CISA drives national efforts to create a secure and resilient cyber
ecosystem through the combination of a wide range of technical and non-
technical capabilities, including helping to assure the security of software-
enabled products and services, addressing gaps in the national
cybersecurity workforce, and fostering innovations to make game-changing
impacts in cybersecurity.
November 15, 2022
CSD Vision, Mission, and Goals
CSD VISION
A secure and resilient national cyber enterprise
that enables the delivery of critical products and
services to the American people under all conditions.
CSD MISSION
Drive toward a cybersecurity environment
in which:
malicious actors face insurmountably high costs to
execute damaging intrusions
vulnerabilities are remediated prior to production
deployment or rapidly identied before exploitation
technology is designed and used to reduce the most
harmful and systemic consequences.
CSD GOALS
ENHANCE VISIBILITY: Broaden and deepen operational visibility to enable
continuous vigilance and detect security anomalies in real time.
DERIVE INSIGHT: Enhance the
WELCOME! Cybersecurity Division (CSD)
Virtual Industry Day
November 15, 2022
Hosted By the Office of the Chief Acquisition Executive (OCAE)
November 15, 2022
CSD Virtual Industry Day 1 (Nov 15, 2022) - Agenda
Time - EST
1:00 PM 1:05 PM
Welcome & Introduction
Topic
1:05 PM 1:10 PM
Opening Remarks
1:10 PM 1:20 PM
1:20 PM 1:30 PM
CISA Office of the Chief Technology
Officer (OCTO)
DHS Office of the Chief Security Officer
(OCSO) Classified Critical Infrastructure
Protection Program (CCIPP)
1:30 PM 1:40 PM
Cybersecurity Division (CSD) Overview
1:40 PM 1:50 PM
1:50 PM 2:00 PM
CSD Office of the Chief of Staff (OCOS)
FY23 Overview
CSD Office of the Technical Director (OTD)
FY23 Overview
Speaker
Dr. Luicana Nicole Turner, Office of the Chief
Acquisition Executive (OCAE)
David Patrick, CISA Chief Acquisition Executive
Dr. Garfield Jones, CISA Associate Chief
Technology Officer
Michael Ness, CCIPP Program Manager, DHS
OCSO Strategy Analysis & Risk
Management Branch
Matt Hartman, Deputy Executive
Assistant Director for CSD
Alyson Conley, Chief of Staff for CSD
John Simms, Security Architect
November 15, 2022
CSD Virtual Industry Day 1 (Nov 15, 2022) - Agenda
Time - EST
2:00 PM 2:10 PM
2:10 PM 2:20 PM
2:20 PM 2:30 PM
2:30 PM 2:40 PM
2:40 PM 2:50 PM
2:50 PM 2:55 PM
Topic
CSD Capacity Building (CB) / Cyber
Defense Education & Training (CDET) FY23
Overview
CSD Capability Delivery (CD) FY23 Overview
CSD Joint Cyber Defense Collaboration
(JCDC) FY23 Overview
CSD Threat Hunt (TH) FY23 Overview
CSD Vulnerability Management (VM)
FY23 Overview
Summary Remarks
2:55 PM 3:00 PM
Next Steps
Speaker
Cristen Winegrad, Deputy
Branch Chief, Acquisition & Budget
Dan Ritz, Program Manager & Allison Evans,
Deputy Program Manager
Erin Shepley, Partnerships Branch Chief
Shaun Grant, Branch Chief, Business
Operations Branch
Kirk Lawrence, Program Manager
David Patrick, OCAE and Alyson Conley, Chief
of Staff for CSD
Dr. Luicana Nicole Turner, OCAE
November 15, 2022
CSD Virtual Industry Day 2 (Nov 16, 2022) - Agenda
Time - EST
Topic
Speaker
11:00 AM 11:45 AM CSD Vulnerability Management (VM)
Kirk Lawrence, Program Manager
1:00 PM 1:45 PM
Maturing the Organization
Alyson Conley, Chief of Staff for CSD
2:30 PM 3:15 PM
CSD Resourcing the Industry - "How we
engage industry for potential support"
Jay Robinson, Chief of CSD Contracts
Management Office
November 15, 2022
CSD Virtual Industry Day 3 (Nov 17, 2022) - Agenda
Time - EST
Topic
11:00 AM 11:45 AM DHS Office of the Chief Security
2:30 PM 3:15 PM
Officer (OCSO) Strategy, Analysis and Risk
management (SARM) Q&A Session
CISA Office of the Chief Technology
Officer (OCTO) Q&A Session
Speaker
Michael Ness, Classified Critical Infrastructure
Protection Program (CCIPP) Program Manager,
and Kim Colon, Branch Chief, SARM Branch
Dr. Garfield Gary Jones, CISA Associate Chief
Technology Officer
November 15, 2022
C Y B E R S E C U R I T Y &
I N F R A S T R U C T U R E
S E C U R I T Y A G E N C Y Office of the Chief Acquisition Executive
DEPUTY CAE
PROCUREMENT / CHIEF OF THE CONTRACTING OFFICE
C o m m i t m e n t t o I n d u s t r y E n g a g e m e n t :
Industry Days
Capability focused
Breakouts for Q&A
CISA Vendor Engagement Program
Increasing engagements
Improving quality
Key Links:
Doing Business With CISA:
https://www.cisa.gov/doing-business-cisa
CISA Vendor Engagement Program:
CISAVendorEngagement@cisa.dhs.gov
Acquisition Planning Forecast System:
https://apfs-cloud.dhs.gov
SAM.GOV:
https://sam.gov/content/home
CHIEF ACQUISITION EXECUTIVE (CAE)
DAVID PATRICK
JUAN ARRATIA
DEPUTY CAE
BUSINESS OPERATIONS
CHRISTIAN VAN GINDER
DEPUTY CAE
ACQUISITION PROGRAM GOVERNANCE
TIMOTHY RUNFOLA
KEY FUNCTIONS
SUPPORT, EXECUTION, &
GOVERNANCE;
POLICY & PROCEDURE;
WORKFORCE DEVELOPMENT;
DATA & REPORTING; and
ORGANIZATIONAL DEVELOPMENT
C I S A | C Y B E R S E C U R I T Y A N D I N F R A S T R U C T U R E S E C U R I T Y A G E N C Y
CISA CHIEF TECHNOLOGY OFFICER
Dr. Garfield Gary Jones
CISA Associate Chief Technology Officer
November 15, 2022
CISA CTO Mission and Vision
Mission:
To identify and influence
emerging technology and
data that continually
improves CISAs
management of our
Nations risk to cybersecurity
and critical infrastructure
Vision:
Distinct technological
advantage for CISA
mission and operators
November 15, 2022
Chief Technology Officer
3 Focus Areas
Data
Enterprise Arch
Strategic Tech
3 Perspectives for Tech
Ours
Partners
Adversaries
November 15, 2022
Understanding the Opportunities
https://www.cisa.gov/publication/strategic-technology-roadmap-overview
November 15, 2022
C I S A | C Y B E R S E C U R I T Y A N D I N F R A S T R U C T U R E S E C U R I T Y A G E N C Y
DEPARTMENT OF HOMELAND SECURITY
(DHS) OFFICE OF THE CHIEF SECURITY
OFFICER, STRATEGY, ANALYSIS AND RISK
MANAGEMENT (SARM)
Michael Elliot Ness
Classified Critical Infrastructure Protection Program (CCIPP)
Program Manager
November 15, 2022
Mission and Vision
Vision: Protect National Security through a robust
Departmental Industrial Security Program
Mission: To ensure that cleared U.S. defense industry
safeguards classified information in their possession that is
vital to our national security and the integrity of the Homeland.
Create a partnership with our industry stakeholders to
continuously monitor and improve security of classified
information in support of national security and the warfighter
November 15, 2022
Organizational Chart
NSSD
Director
NSSD Deputy
Director
Operations Branch
Chief
SARM Branch
Chief
Security
Specialist
Security
Specialist
Senior Security
Specialist
Program Analyst
Program Analyst
Program Analyst
Program Analyst
Program Analyst
Program Analyst
November 15, 2022
Functions
CCIPP was originally created from Executive Order (E.O) 13961,
Promoting Private Sector Cybersecurity Information Sharing, dated
February 2015
Management and Oversight of the Departments Classified Critical
Infrastructure Protection Program - CCIPP
Support CISAs Cyber Information Sharing and Collaboration Program
(CISCP) to include Sector Risk Management Agency representatives and
CISA Central
Facilitate and coordinate Cybersecurity Information Sharing and
Collaboration Agreements (CISCAs) to ensure shared classified
cyberthreat information is properly safeguarded
Conduct Risk Analysis Assessments involving defense industry base and
private industry companies (outside of traditional NISS FCL processes)
November 15, 2022
Classified Critical Infrastructure Protection Program
CCIPP is/was built to support CISAs National Cybersecurity and
Communications Integration Center (NCCIC) aka, CISA Central and its
supporting Sector Risk Management Agencies
CCIPP provides another vehicle to share information with private industry
primarily used for classified cyberthreat information
Developed and deployed electronic-Tracked Records of Adjudicated
Companies (e-TRAC) - SORN to process and vet program participants
We offer business analytical tools & assessments
In-depth research by program analysts - provides CISA and program
participants supplementary information for decisionmakers
Detailed risk assessment reports
November 15, 2022
C I S A | C Y B E R S E C U R I T Y A N D I N F R A S T R U C T U R E S E C U R I T Y A G E N C Y
CYBERSECURITY DIVISION (CSD)
OFFICE OF THE EXECUTIVE ASSISTANT
DIRECTOR
Matt Hartman
Deputy Executive Assistant Director for CSD
November 15, 2022
C Y B E R S E C U R I T Y &
I N F R A S T R U C T U R E
S E C U R I T Y A G E N C Y
MISSION PRIORITIES
Cybersecurity
Division
The Cybersecurity Division
(CSD) assures the security,
resilience, and reliability of the
nations cyber systems.
Cyber Defense Operations
CISA identifies, detects, assesses, and responds to urgent cybersecurity
risks through information sharing, deployment of detective and preventive
technologies, and by providing incident response and hunt capabilities to
help the nation respond to and minimize impacts of significant incidents.
Risk Management and Resilience
CISA provides tools, services, and expert guidance to drive cybersecurity
risk management and build resilience by addressing systemic risk and
helping organizationsparticularly those performing National Critical
Functions (NCFs) operate safely and reliably even when being targeted
by adversary activity.
Cyberspace Ecosystem Advancement
CISA drives national efforts to create a secure and resilient cyber
ecosystem through the combination of a wide range of technical and non-
technical capabilities, including helping to assure the security of software-
enabled products and services, addressing gaps in the national
cybersecurity workforce, and fostering innovations to make game-changing
impacts in cybersecurity.
November 15, 2022
CSD Vision, Mission, and Goals
CSD VISION
A secure and resilient national cyber enterprise
that enables the delivery of critical products and
services to the American people under all conditions.
CSD MISSION
Drive toward a cybersecurity environment
in which:
malicious actors face insurmountably high costs to
execute damaging intrusions
vulnerabilities are remediated prior to production
deployment or rapidly identied before exploitation
technology is designed and used to reduce the most
harmful and systemic consequences.
CSD GOALS
ENHANCE VISIBILITY: Broaden and deepen operational visibility to enable
continuous vigilance and detect security anomalies in real time.
DERIVE INSIGHT: Enhance the
Show All