South Texas ISSA "DoD Regulations and CMMC Certification" June 21, 2024

South Texas ISSA

What: Instructor Led Training (4 CPE Hours)

When: June 21, 2024

Hours: 9:00 am CDT – 1:00 pm CDT

(lunch will be provided)

Instructors:

Dr. Tom Duffey, Director of Cybersecurity and Compliance (Education), South Texas ISSA Education Director, and former DoD contract ISSO

Mr. Chris Wolksi, Texas A&M School of Law Professor of Maritime Compliance and CMMC-certified professional

Location: Microsoft Corporation

750 Town and County Bld, Suite 1000

Houston, TX 77024

(832) 252 - 4300

ISSA Members: $20, includes 4 CPEs

ISSA Non-Member: $40, includes 4 CPEs

(Seating is limited)

Prerequisites:

• Knowledge of basic security and cloud computing concepts

• Familiarity with general cybersecurity principles

Skills Training Description: This session, taught by two experienced security professionals with government experience, will focus on the evolution of Department of Defense (DoD) regulations into mandatory Cybersecurity Maturity Model Certification (CMMC) requirements with which industry contractors bidding on government contractors must adhere.

This training will benefit security and compliance professionals working in roles as government contractors and those who are interested in gaining a better understanding of CMMC certification. Topics will include:

• History of the DoD regulatory environment

• Ongoing evolution of CMMC requirement

• The impact of CMMC certification on DoD contracting

• CMMC terminology, roles, and responsibilities

• The CMMC certification process

Participants will understand the driving forces behind CMMC, the importance of becoming CMMC-certified, and the different CMMC certification levels.

Instructor Bios:

“Dr. Tom” Duffey, ITEGRITI Director of Cybersecurity and Compliance (Education) and South Texas ISSA Education Director

(CISSP, CISM, CISA, C|CISO, CGRC, CDPSE, C|EH, CCNP-S, FITSP-M, GCIP, MCSE, PMP)

Dr. Tom specializes in critical infrastructure cybersecurity and regulatory compliance for the defense, healthcare, and energy (utilities and oil & gas) sectors. He brings over 30 years of experience in different roles to the table and is passionate about protecting operational technology (OT) and the Internet of Things (IoT) for various industries. Tom’s diverse consulting, training, and project management experience also includes supporting multiple military branches (U.S. Army, Navy, Air Force, Marines, Army Reserve, and Air National Guard) at numerous CONUS and OCONUS facilities across the globe.

Dr. Tom leads OT/IT/IoT critical infrastructure protection delivery education efforts for multiple ITEGRITI clients and is part of local boards and leadership. Teaching and learning are two of Dr. Tom’s biggest passions. Along with contributions to numerous security thought leadership efforts, including a World Economic Forum whitepaper, and leading two domain rewrites for the EC-Council C|CISO Body of Knowledge. Dr. Tom earned his Doctoral degree in Computer and Information Security. His dissertation explores the Impact of NERC CIP regulatory compliance on security and risk. He currently participates in multiple NERC efforts and serves in other supporting roles, including ISSA South Texas Education Director, InfraGard Houston Energy Cross-Sector Council Programs and Education Director, ISACA Greater Houston Chapter Deputy Education Director, ISA Houston Deputy Education Director, and NERC Supply Chain Working Group Vice Chair.

Chris Wolski, MBA, CISSP, GICSP, CCP

Chris is an entrepreneur, former CISO, U.S. Navy Veteran, award-winning and experienced transformational information technology & cybersecurity leader, and educator with over two decades of cross-industry information security expertise. His recent efforts include developing and providing Master’s level education on maritime cybersecurity compliance and other courses, introducing students to MTSA, 33 CFR, ISPS, Coast Guard NVIC, and CMMC compliance requirements. As the founder of Applied Security Convergence, Chris provides tailor-made cybersecurity solutions for the maritime and critical infrastructure industries, identifying and mitigating vulnerabilities to reduce risk. Additionally, Chris has led a client organization to the best ISO 27001 that the audit organization had ever experienced.

Chris is a cybersecurity/information security advisor who enjoys mentoring and assisting cybersecurity students with their career goals. He has over 20 years of diverse industry experience and specializes in protecting critical infrastructure within various regulated sectors. Chris's achievements include architecting a formidable security framework meeting TAC-202 standards to rapidly thwart nation-state zero-day attacks at the Port of Houston Authority. His expertise extends to SOC, NIST, HIPAA, PCI-DSS, TAC-202, MTSA, and other federal and state frameworks. He currently serves as the ISSA South Texas Recording Secretary and participates in local cybersecurity conferences and events in the Houston area. Chris is also a Certified CMMC Professional (CCP) working toward becoming a CMMC Assessor (CCA).

Questions: Contact "Dr. Tom" Duffey, ISSA South Texas Education Director (education@southtexas.issa.org)

Please Note: ***Registration closes Thursday, June 20, at 8:00 AM Central***

Also Note: Members, please verify your email address on file with ISSA. This is where all course correspondence will be sent to members for CPEs.