SEP 15 @5:30 pm – Ms. Victoria Yan Pillitteri on Control Automation NIST 800-171, 800-53

REGISTER: This is a Mid Atlantic Summit for the ISSA Nova, Central Maryland, and DC Chapters. This is a Hybrid meeting. A dinner meal will be served (Meal menu TBD). REGISTER HERE IN PERSON & ONLINE ZOOM Location: MITRE (Building 1 Room 1N100), 7525 Colshire Dr, McLean, VA 22102. 1. All attendees will need proof of vaccination for entry. This can be a card or a picture of a card. 2. Registration closes on Thursday 09/08/2022. 3. Foreign nationals (those that are not U.S. Citizens, don’t have a green card or are representing a foreign company) need additional approval. For those with a green card, you need to bring it to the meeting.

Abstract:   Victoria Yan Pillitteri  will present on Automation with controls and NIST 800-171 and the Future of NIST SP 800-53. NIST Special Publication (SP) 800-53, Security and Privacy Controls for Information Systems and Organizations, provides a comprehensive set of countermeasures to protect systems and organizations and manage cybersecurity, privacy, and cyber supply chain risk. Each revision of SP 800-53 is the most downloaded publication from the NIST Computer Security Resource Center. SP 800-53 is used by organizations small and large, public and private, and across all sectors of the U.S and international economy. As organizations leverage more and more automation to make informed cybersecurity and privacy risk management and operational decisions, it is imperative that NIST also integrates automation into the development and release of updates to the security and privacy controls. NIST now offers the SP 800-53 controls in multiple formats, from PDFs /spreadsheets to various machine-readable formats, and also has a new tool to keep the control up-to-date and allow stakeholders to submit their ideas and feedback any time, from anywhere. Learn more about NIST’s new resources – the SP 800-53 Controls Release Search and SP 800-53 Public Comment Tool – and what’s in store for future revisions of the security and privacy controls.

About the Speaker: Ms. Victoria Yan Pillitteri is a supervisory computer scientist in the Computer Security Division at the National Institute of Standards and Technology (NIST). Ms. Pillitteri is the Acting Manager of the Security Engineering and Risk Management Group and leads the Risk Management Framework team/Federal Information Security Modernization Act (FISMA) Implementation Project. The group conducts the research and development of the suite of risk management guidance used for managing cybersecurity risk in the federal government, and the associated stakeholder outreach and public-private coordination/collaboration efforts. She serves as the lead of the Joint Task Force working group, a partnership with Department of Defense, the Intelligence Community and Civilian Agencies to develop a unified security framework to protect USG from cyberattacks, and also co-chairs the Federal Cybersecurity and Privacy Professionals Forum. Ms. Pillitteri is the co-author of multiple NIST publications, including Special Publications (SP) 800-53, SP 800-53A, SP 800-53B, 800-37, 800-171, 800-171A, 800-172, and 800-172A. MS. Pillitteri holds a B.S. in Electrical Engineering from the University of Maryland, a M.S in Computer Science, with a concentration in Information Assurance, from the George Washington University, completed the Key Executive Leadership Program at American University, and is a Certified Information Systems Security Professional (CISSP). She has completed a Senior Executive Service Candidate Development Program and is SES certified by the Office of Personnel Management Qualifications Review Board.