390 likes | 407 Views
ACT-IAC General Membership Meeting. September 26, 2018. Welcome and Chair Remarks. Richard Spires IAC Executive Chair. Agenda. Welcome & Chair’s Remarks Identity, Credential, and Access Management (ICAM) Report Briefing Imagine Nation ELC 2018 Update
E N D
ACT-IAC General Membership Meeting September 26, 2018
Welcome and Chair Remarks Richard Spires IAC Executive Chair
Agenda • Welcome & Chair’s Remarks • Identity, Credential, and Access Management (ICAM) Report Briefing • Imagine Nation ELC 2018 Update • Program Discussion – Max Everett, Chief Information Officer, Department of Energy • Networking Reception
Welcome New Members • 10Pearls LLC • Amivero • Anomali • Applied Insight LLC • Apptio, Inc. • Ascencion, LLC • BD Squared LLC • Bookzurman • Business Integra Technology Solutions • Comm-Works/Fortran LLC • Dinocrates Group LLC • Duo Security, Inc. • EagleForce Associates, Inc. • Emerjence LLC • ESRI • Fugue, Inc. • Google • Harmonics Consulting LLC • Infotrend, Inc. • ITekFED, LLC • Mackkell Technologies, LLC • Pingwind, Inc. • PKWARE • Planet Technologies • Potomac Ridge Consulting • Prosperata
WelcomeNew Members • Spry Methods, LLC • Snap, Inc. • SteelCloud, LLC • Stratus Cyber LLC • Take2 Consulting LLC • Tantus Technologies, Inc. • Ribbon Communications • SAP National Security Services (NS2) • Scope Group, Inc. • Sitecore • Snowflake Computing • SoKat Consulting
2019 Voyagers Leadership • Government Chair: Emma Antunes, National Aeronautics and Space Administration • Industry Chair: Jeff Shen, Red Team Consulting • Government Vice Chair: Michael Palmer, Department of Homeland Security • Government Vice Chair: Somer Smith, Office of Management and Budget • Industry Vice Chair: Donna Glassley, CISCO Systems • Industry Vice Chair: Cameron Hogan, E3 Federal
2019 Voyagers Class - Government • DeLonta Adams, Internal Revenue Service • Ramzi Bannourah, Federal Deposit Insurance Corporation • Julius Bradshaw, General Services Administration • Soundjata Carty, General Services Administration • Young Choi, Department of Education • Rachel Crabtree, Department of Education • Martin Douglas, Internal Revenue Service • Dolreen Holland, Internal Revenue Service • Vinit Kumar, National Aeronautics and Space Administration • Stephanie McDuffie, Internal Revenue Service • Jennifer Ouverson, Department of the Interior • Ali Pourghassemi, Department of Health & Human Services • David Rupert, Department of Veterans Affairs • Birgit Smeltzer, General Services Administration • Xavierra Webb-Spann, General Services Administration • Christian Williams, General Services Administration
2019 Voyagers Class - Industry • Clint Cates, Indigo IT, LLC • Sudhir Duggineni, Karsun Solutions • John Enquist, iPower LLC • Lauren Fishburn, CISCO Systems • Scott Gold, TeraThink • Nathan Hintz, Wolf Den Associates • Alexander Lin, TCG • Alec Longarzo, Excella • Shakira McCants, E3 Federal Solutions • Tamar Mintz, Highlight Technologies • Noor Monam, Booz Allen Hamilton • Frank Reyes, Dun & Bradstreet • Sarah Thayer, Phacil, Inc. • Angela Williams, CGI • Brittany Woodruff, Leidos
IAC Executive Committee Portfolios • Enhance Government Engagement • Ivette Granier Smith • Tim Young • Mitzi Mead Professional Staff Partner: Michael Howell • Focus on Healthcare • Kenneth Bonner • Support from Institute (Judy Douglas) Professional Staff Partner: Carol Miller Imagine Nation – ELC 2018 • Susan Becker • Mitzi Mead Professional Staff Partner: Kisha Powell Other Conferences and Forums • Kathy Conrad • Paul Strasser Professional Staff Partners: Kisha Powell & Carol Miller
IAC Executive Committee Portfolios • Broaden the IAC Membership • Ted Davies • Jackie Everett • Rick Holgate Professional Staff Partner: Carol Miller • Enhancing Collaboration Activities • Jonathan Alboum • Cynthia Shelton Professional Staff Partner: Michael Howell Professional and Leadership Development • Gabi Feibel • Malcolm Harden • Kim Pack Professional Staff Partners: Casey Harris & Glenda Henning Align Existing Programs (Metrics) • Sundar Vaidyanathan • Richard Spires • Paul Strasser Professional Staff Partner: Ken Allen
Upcoming Events Sept. 27thShared Services COI Monthly Meeting Sept. 27th Volunteer Corps Event: DC Central Kitchen Oct. 5th Federal Insights Exchange Session featuring Dr. John Zangardi Oct. 9thIT Management and Modernization Monthly Meeting Oct 14- 17th Imagine Nation ELC 2018 Oct. 23rdEmerging Technology COI Monthly Meeting Oct. 25thShared Services COI Monthly Meeting Oct. 31stData Strategies, Analytics, and Trending Forum Nov. 1st Shared Services Summit Nov. 8th2018 Healthcare Block-a-Thon Nov 28th Small Business Alliance Straight Talk featuring FAA Nov 28thACT-IAC General Membership Meeting For Event Descriptions and registration, visit www.actiac.org
Identity, Credential, and Access Management (ICAM) Report Charles Santangelo, Project Co-Lead, ODNI Terrence McBride, Project Co-Lead, BAH
Interviewees • Mission managers and technical personnel in nine organizations within Federal, state and local government, and private sector • Drug Enforcement Administration (DEA) El Paso Intelligence Center (EPIC) • Washington/Baltimore High Intensity Drug Traffic Area (W/B HIDTA) • Delaware Information and Analysis Center (DIAC) • Town of Pearl River, Louisiana • First Responder Network Authority (AT&T FirstNet) • NASA ICAM Office • Office of Management and Budget (OMB) MAX.gov • National Institute of Standards and Technology (NIST) • General Services Administration (GSA) FICAM Office
What is ICAM? ICAM is a specialization within cybersecurity responsible for securing connectivity to business applications and also directly interacting with applications to convey user information to support transactions. Issued AuthN Decision Making & Enforcement Credentials A credential binds an identity to an authenticator, allowing the system to identify the user through login (i.e., user authentication). A combination of username and password is a common, low-security authenticator. Credentials allow us to re-use identity proofing events. Access Accessrefers to what a user can see and do within the system. Groups or roles are a common way of managing access by giving special permissions to certain user types. Level of access is determined based on the users’ attributes and application’s access policies. Identity Digital identity is an abstract concept representing the online persona of a subject [NIST SP 800-63]. Through identity proofing, a subject establishes that they are who they claim to be. It is an important first step in managing user access to a system. Management– The process of organizing and directing work or resources
Insights from Review of ICAM State • Identity Proofing – Significant progress has been made and promising technologies have recently emerged to help remotely identify people, such as those used in smartphones for facial image or fingerprint capture. • Authentication – Passwords are vulnerable. Next generation authenticators include cryptographic keys stored in secure hardware and trusted computing platforms (e.g., as a dedicated chip). The keys are activated through biometrics, PIN, etc. • Identity Federation –Through identity federation, organizations accept trusted partners, relying on those partners’ ICAM capabilities to save time and money and reduce human error. • Federal ICAM Strategy – The Federal Government has recognized the need for a strategic approach to ICAM.
Conclusions (1 of 2) • The Federal Government has made significant progress withICAM, but needs to integrate ICAM processes with state and local governments. • Regional efforts to promote opioid information sharing are making headway, and some progress is being made to connect information systems. Further advances could be made by using creative ICAM solutions working with private sector technologies. • First Responders can expect a range of new capabilities from FirstNet. FirstNet plans include a consistent approach to ICAM to enable First Responders to access the network. Budget constraints in local agencies is a potential concern.
Conclusions (2 of 2) • Existing NIST standards and GSA guidance provide guidelines for use of ICAM in Federal Government. If adopted, guidelines should also help state and local governments by ensuring consistency. • NASA’s ICAM deployment provides excellent example of a mature program with a robust approach to ICAM that covers strategy, organizational structures, processes, technologies, and staff training/involvement. • OMB MAX.gov’s Identity-as-a-Service (IDaaS) and Authentication-as-a-Service (AaaS) provide excellent examples of shared service approaches that can be used to minimize some of the burden of implementing ICAM technologies.
Observations and Recommended Best Practices • From interviews, we identified a common set of ICAM challenges, best practices, and recommendations that agencies could use for their ICAM program to increase security and collaboration/information sharing. • Three areas of challenges and recommendations – organizational, resource and technical.
Project Team Members • Co-Leads: • Charles Santangelo, ODNI Office of Information Sharing • Terry McBride, Booz Allen Hamilton • Members: • Sarah Chu, EasyDynamics • Carolyn Hannon Merek, eMentum • Michael Konrad, KPMG • Mary Ellen Condon, Condon Associates LLC • Lionel Cares, ATF • Vipul Sachdeva, CGI Federal • Roel Lascano, CGI Federal • Phillip Wood, Intec, LLC • Norman Brickman, Core One • Christina Grolman, Booz Allen Hamilton • ACT-IAC Professional Partner: Michael Howell
For additional information, Contact: • Charles.Santangelo@dni.gov • Mcbride_Terence@bah.com
Thank you! • Questions?
Imagine Nation ELC 2018 Update Susan Becker VP Alliances, Unisys Federal Conference Executive Vice Chair
Chairs: • Lesley Field, OMB - Government Liaison • Tony Scott – Industry • Area Vice Chairs: • Tracks/Sessions/Plenary– Kathy Conrad, Bill Zielinski (GSA) • Technology Showcase – Kathy Cowles, John Sprague (NASA) • Training – Hilary Gazzola and Steve Krauss, GSA • Marketing & Communications– Cheryl Waldrup, Rory Schultz, USDA • Gov’t Outreach – Sandy Mestre, Casey Kelley (GSA),Ron Thompson (USDA) • Networking & Excursions –Ivette Granier-Smith, Jack Wise (GSA) • Host City Committee – Paul Strasser, Dena McLaughlin (GSA) Imagine Nation ELC 2018 Leadership • Exec Vice Chairs: • Darren Ash, USDA - Government • Susan Becker, Unisys, Industry
Imaginarium One of four Track Session locations: a unique environment designed to maximize collaboration, interaction and imagineering. • A Truly Reimagined ELC Center Stage Compelling presentations throughout the day on forward-leaning topics of wide interest. IMAGINE NATION Theater Multi-purpose theater for Plenary Sessions, meals, Awards Ceremony and more 360° ExperientialLearning & Collaboration Environment Partner Pavilion Comprehensive exhibits by Government and Industry Partners of all scales and categories (Thirty Nine) TechKnow Showcase Advanced solutions showcase and collaboration zone, organized around four Innovation Hubs Track Theaters (3) Track Sessions
TechKnow Showcase Four Government Agency Hosted - Topic-driven Innovation Hubs Cybersecurity IT Modernization DISA and Dept of Education USDA and DOJ Emerging Technology Customer Experience USDA and Dept of Veterans Affairs NASA and HHS … Plus --Twenty ACT IAC Member Company Sponsors showcasing solutions & Capabilities
Center Stage Thirteen Ted-Talk Like Presentations on Hot Topics Tuesday Oct 16th Monday Oct 15th
Training Day • Introducing a day of training to kick off Imagine Nation - ELC 2018! • Receive up to eight (8) Continuous Learning Points (CLPs) • Training courses offered: • Strategic Thinking and Management • Managing Up, Down, and Across: Working Successfully with Managers and Peers • Leveraging 'Strategic4Sight' to Assess the Technology Landscape of the Future • Design Thinking for Agile Problem-solving: A Hands-on Workshop • Change Management - A Rational Approach to Managing the Irrational • Hot Technology Topics • Auditable Agility: How to be Responsive and Regulated • Blockchain Training for Government & Business Professionals: An Overview and Use Cases • Cybersecurity Essentials for Government and Industry Leaders • Introduction to Cyber Warfare: The application of DOD Cyber Warfare Strategies to the Civilian Marketspace • DevOps Simulation – Breaking Down Silos and Getting Work Done • Emerging Trends & Innovative Practices • Strengths-Based Winning in Federal Contracting • A Deep Dive into NASA SEWP's Acquisition Tips, Tools, and Innovation
More than 190 ACT IAC Member Companies and Media Partners have already registered to attend,More than 25 Federal Agencies will be represented,Will you be there?Don’t Miss the Best Federal IT Conference of the Year - Sign up Today!Thank you • October 14 - 17
Featured Program Speaker Max Everett Chief Information Officer Department of Energy
SAVE THE DATENovember 28, 2018Membership MeetingFairview Park Marriott
Networking Reception Salon 6-8