Workshop Wednesdays

INMA presents Workshop Wednesdays, a component of National Infrastructure Security and Resilience U (NISRU), offering world class online learning and continuing education focused on critical infrastructure protection and resiliency.

We just lowered the prices for all workshops to make them more accessible to our members and partners; If you recently registered under the higher prices, we will be issuing refunds to the credit card you used.

Notes:

All workshops are eligible for Continuing Professional Education (CPE) credit; one SPE will be issued for each hour of workshop presentation and total CPEs will be reflected on the Certificate of Attendance.
The cost and times for each workshop is noted in each description below.

3: JUNE 23, 12-2pm ET / 9-11am PT

Vendor Management – Learning to Not Outsource Responsibility

Paul Perry | Warren Averett, LLC

This presentation will dive into vendor management by companies – the dos and don’ts – and emphasis the requirement to maintain a constant due diligence over those vendors. We will explore the policy and procedure of the review and dive into requirements of the contracts with vendors in order to keep a pulse on their activities and ensure secure return of data and information at the end of the relationship.

Agenda

Understanding Vendor Management Best Practices
Understanding Policy Requirements For Vendor Management
Understand Vendor Contract Best Practices with Data and Security
Deep Dive into SOC Reports and What they Tell us about our Vendor
Vendor Horror Stories

INMA Board Moderator: TBD

Pricing:

InfraGard Patriots Circle Members $26 (Discount code sent in separate email to all Patriots Circle members)
Regular InfraGard Members $29 (Discount code sent in separate email to all InfraGard members)
Other Government employees $29 (contact us for code; must have .gov email to qualify for this price)
Regular Price/All Others $59

Learning Objectives

1. Understand Importance of Performing Vendor Reviews and Risk Assessments

2. Understanding Best Practices with Vendor Contracts

3. Understand SOC Reports and How to Read/Analyze them

About the Instructor

Paul Perry

Warren Averett, LLC

Paul Perry has been with the Firm since 2004 and is a Member and the practice leader of the Security, Risk and Controls Group. Paul and his team focus on cybersecurity, information technology related projects, risk assessments, internal controls, internal audit and control-related projects, including System and Organization Control engagements. Paul has earned the Certified Information Technology Professional (CITP) certification. This credential is awarded to CPAs who possess both information technology and business expertise. Paul is a thought leader, published columnist and regular speaker on topics such as cybersecurity, data analysis, internal controls, information technology and vendor management. During the year, Paul performs 20+ external presentations on a wide variety of technology and control related topics to groups including corporate clients, ASCPA, HFMA, IIA and ISACA.

COMPLETED

4: JUNE 30 & JULY 1, 12-2pm ET / 9-11am PT (each day)

Anatomy of Crisis Management

A 4-hour, instructor directed virtual course designed to help executives, responders, and support personnel across all sectors to gain the knowledge they need to be effective and build a strong baseline understanding of the functions, leadership, and operational skills needed to manage a crisis event. Topics include:

How to Operate an Emergency Operations Center (EOC) – Virtually or In-person
Managing Day to Day Emergencies vs. Disasters – Scalability
Role of the Executive – Decision Making Under Stress
Setting Overarching Goals, Priorities, and SMART Objectives
Defining Your Response Organization
Function of the Emergency Operations Center vs. Field Command Post
Information Flow, Situational Awareness, Sharing, and Collaborating

INMA Board Moderator: Maureen O’Connell, INMA President and Board Director

Pricing:

InfraGard Patriots Circle Members $44 (Discount code sent in separate email to all Patriots Circle members)
Regular InfraGard Members $49 (Discount code sent in separate email to all InfraGard members)
Other Government employees $49 (contact us for code; must have .gov email to qualify for this price)
Regular Price/All Others $79

Learning Objectives

Attendees will learn:

How to manage the scalability of a crisis event;
The significance of having overarching goals and aligned priorities;
How “SMART” objects improve crisis management; and
The need for effective situational awareness, information sharing, and collaboration.

About the Instructor

Quentin Frazier

Emergency Manager | Trainer

Quentin Frazier is a veteran Emergency Manager with 27 years’ experience. He teaches ICS to fit the client culture with focus on function and responsibilities and how to move from blue skies and scale up to meet the organization needs.

Eric Baumgardner

Emergency Manager | City of Burbank Fire Department

Eric Baumgardner has over 20 years of Emergency Management experience including responding to over 2 dozen Presidentially Declared Disasters and numerous local or Governor proclaimed emergencies.

Brent Woodworth

Global Crisis Services, Inc.

Brent Woodworth has led over 70 crisis events in 50 countries. Keynote speaker, author, and consultant. Brent was the Chairman of the US Congressional Study of the Benefits of Pre-Disaster Mitigation and is an active participant with the National Academy of Sciences. Currently, Chairman of the LA Emergency Preparedness Foundation.

COMPLETED

5: JULY 14, 12-3pm ET / 9am-12pm PT

Advanced OSINT Tradecraft (AOT) 1: Advanced Techniques to Find People

Roque Wicker | CEO | C-T Watch
Joseph Gray, CISSP | VP of OSINT | C-T Watch, Inc.

There is a necessity to leverage OSINT techniques to find people for a variety of reasons: fraud, investigations, or missing persons. This 3-hour course leverages several techniques (absent usernames and email addresses) to correlate a person with entities, locations, or activities.

INMA Board Moderator: Mohamed Elansary, INMA Board Director

Pricing:

InfraGard Patriots Circle Members $36 (Discount code sent in separate email to all Patriots Circle members)
Regular InfraGard Members $39 (Discount code sent in separate email to all InfraGard members)
Other Government employees $39 (contact us for code; must have .gov email to qualify for this price)
Regular Price/All Others $69

Learning Objectives

1. Leverage public records and public record brokers to connect a person with an organization.

2. Leverage data brokers to find connections between people, locations, etc.

3. A survey of social media and its impact on People Investigations.

4. Leveraging available /accessible tools online.

About the Instructor

Roque Wicker

CEO | C-T Watch

As President & CEO of C-T Watch, Inc. (Counter-Terrorism Watch, Inc.) Mr. Wicker is actively engaged in all aspects of global operations as well as delivering the strategic vision of the company. Mr. Wicker comes from three generations of US National Security professionals and is a veteran of the U.S. Navy and served on the USS Camden for two tours, Explosive Ordnance Disposal (EOD) Mobile Unit 3 and as a reservist in EOD-Mobile Unit 7.

Joseph Gray, CISSP

VP of OSINT | C-T Watch, Inc.

A native of Eastern Tennessee, Joseph is an Open Source Intelligence (OSINT) and investigations expert specializing in assessing public information for evaluating external risks, finding missing persons, threat modeling, and operations security. He possess several cybersecurity industry certifications including Certified Information Systems Security Professional (CISSP®) and GIAC Certified Incident Handler (GCIH®). In addition to VP of OSINT at CT Watch, SME is a former Navy Submarine Navigation Electronics Technician and transitioned into the private sector offering collaborative attitude and expertise to support a variety of organizations, both public and private in implementing better cybersecurity.

COMPLETED

6: JULY 21, 12-3pm ET / 9am-12pm PT

Advanced OSINT Tradecraft (AOT) 2: Username and Email Analysis

Roque Wicker | CEO | C-T Watch
Joseph Gray, CISSP | VP of OSINT | C-T Watch, Inc.

We are aware of the contemporary advice to avoid using the same password across multiple platforms. The same is applicable for usernames. This particular advanced technique is incredibly powerful in identifying missing persons and threat actors.

INMA Board Moderator: Mohamed Elansary, INMA Board Director

Pricing:

InfraGard Patriots Circle Members $36 (Discount code sent in separate email to all Patriots Circle members)
Regular InfraGard Members $39 (Discount code sent in separate email to all InfraGard members)
Other Government employees $39 (contact us for code; must have .gov email to qualify for this price)
Regular Price/All Others $69

Learning Objectives

1. Using tools for username analysis.

2. Using tools for email address analysis as it relates to:

a. Data Breaches

b. Accounts

3. Leveraging Google dorks and other techniques to further the analysis.

About the Instructor

Roque Wicker

CEO | C-T Watch

Joseph Gray, CISSP

VP of OSINT | C-T Watch, Inc.

7: JULY 28, 12-3pm ET / 9am-12pm PT

Advanced OSINT Tradecraft (AOT) 3: Crypto Currency and Other Cryptographic Artifacts

Roque Wicker | CEO | C-T Watch
Joseph Gray, CISSP | VP of OSINT | C-T Watch, Inc.

This session focuses on the basics tracking of tracking crypto on the web. In the context of crypto, we will start with tracking cryptocurrency – Bitcoin, Ethereum, etc. in terms of transactions, owners, and tying currencies to a threat actor or person. The second part will be tracking cryptographic artifacts, like Public Keys, HTTPS certificates, and correlating Dark Web sites to clear web sites.

INMA Board Moderator: Gene Kingsley, INMA Vice President

Pricing:

InfraGard Patriots Circle Members $36 (Discount code sent in separate email to all Patriots Circle members)
Regular InfraGard Members $39 (Discount code sent in separate email to all InfraGard members)
Other Government employees $39 (contact us for code; must have .gov email to qualify for this price)
Regular Price/All Others $69

Learning Objectives

1. Understand cryptocurrency and techniques to track wallets and transactions.

2. Leverage Google dorks and other methods to track people based on cryptographic artifacts.

3. Leverage leading tools to track clear web-dark web relationships based on cryptographic artifacts.

About the Instructor

Roque Wicker

CEO | C-T Watch

Joseph Gray, CISSP

VP of OSINT | C-T Watch, Inc.

8: AUGUST 4, 12-3pm ET / 9am-12pm PT

Advanced OSINT Tradecraft (AOT) 4: Protective Intelligence and GEOINT

Roque Wicker | CEO | C-T Watch
Joseph Gray, CISSP | VP of OSINT | C-T Watch, Inc.

This session works with using real-time monitoring techniques alongside the adjacent disciplines of Image Intelligence (IMINT) and Geospatial Intelligence (GEOINT) to effectively monitor a specific location or events for protective intelligence and a correlation to GEOINT in mapping the specific events, actors, and threats.

INMA Board Moderator: Earl Motzer, INMA Board Director

Pricing:

InfraGard Patriots Circle Members $36 (Discount code sent in separate email to all Patriots Circle members)
Regular InfraGard Members $39 (Discount code sent in separate email to all InfraGard members)
Other Government employees $39 (contact us for code; must have .gov email to qualify for this price)
Regular Price/All Others $69

Learning Objectives

1. Techniques for tracking real-time events

a. Hashtags

b. Geolocation

2. Image Intelligence (IMINT)

3. GEOINT using Google Earth Pro (Free tool)

About the Instructor

Roque Wicker

CEO | C-T Watch

Joseph Gray, CISSP

VP of OSINT | C-T Watch, Inc.

9: AUGUST 11, 12-2pm ET / 9-11am PT

Cloud Computing for Critical Infrastructure: The Good, the Bad, and the Landmines

Doug Magedman | Technical Authority | Naval Information Warfare Systems Command

The goal of this course to make learners informed cloud users understanding the advantages and disadvantages of using cloud resources within different organizations and critical infrastructure sectors. Learners will gain experience in how to develop an effective Security Service Level Agreement as well as basic knowledge as to how Cloud Service Providers work in terms of services available and the benefits of those services when applied correctly.

INMA Board Moderator: Daniel Honore, INMA Board Director

Pricing:

InfraGard Patriots Circle Members $26 (Discount code sent in separate email to all Patriots Circle members)
Regular InfraGard Members $29 (Discount code sent in separate email to all InfraGard members)
Other Government employees $29 (contact us for code; must have .gov email to qualify for this price)
Regular Price/All Others $59

Learning Objectives

Define what Cloud really means in terms of its basic services and the security it provides when properly implemented.
List and describe the different Cloud Services and the varying Impact Levels associated.
Explain the key considerations necessary in a Security Service Level Agreement.
Describe how to ensure a proper balance between the security capabilities inherent in a cloud solution with that of an organization’s need or ability to properly secure data on premises.

About the Instructor

Doug Magedman

Technical Authority | Naval Information Warfare Systems Command

Doug Magedman is an InfraGard Member and Cybersecurity Engineering professor from the University of San Diego Master’s program in Cybersecurity Engineering. A former US Navy pilot, he transitioned to retirement and still serves as a civilian engineer in the Naval Information Warfare Systems Command (NAVWAR) Office of the Chief Engineer. He joins the National Infrastructure Security and Resilience U (NISRU) with decades of experience working and teaching in Cybersecurity and related Information Technology fields.

10: AUGUST 18, 12-2pm ET / 9-11am PT

Operational Resiliency (OR) and Business Continuity (BC) – The ability to operate amidst adversity (cyber attack)

Alex Sharpe | Principal | Sharpe Management Consulting LLC

If Ransomware attacks, SolarWinds, and the Colonial Pipeline disruption have taught us anything, the bad guys are not backing down any time soon, and we need to operate even while under attack. The key is proper planning, practice, and post-mortems. Cyber-attacks remain focused on stealing our data and our intellectual property (IP). But, more and more, we are experiencing disruption to the underlying infrastructure – oil, gas, electricity, water – that cannot be offline while we deal with a hacker. Real-world practitioners will cover; the threat using real-world case studies to provide five practical things you can do today that could save your organization tomorrow and review initiatives like the Cybersecurity and Critical Infrastructure Executive Order issued on May 12th. As always, you will leave with street knowledge along with a list of real-world resources.

INMA Board Moderator: Gary Gardner, INMA Chair Emeritus and Chair, INMA Education Committee

Pricing:

InfraGard Patriots Circle Members $26 (Discount code sent in separate email to all Patriots Circle members)
Regular InfraGard Members $29 (Discount code sent in separate email to all InfraGard members)
Other Government employees $29 (contact us for code; must have .gov email to qualify for this price)
Regular Price/All Others $59

Learning Objectives

1. Be able to articulate the difference between and the value of business continuity (BC), Operational Resilience (OR), and disaster recovery (DR).

2. Be able to list the top five most common mistakes that cause the most headaches along with the top five things you can do to stay above the fray.

3. Gain working knowledge of government and industry efforts in fostering Operational Resilience (OR) along with a list of resources.

About the Instructor

Alex Sharpe

Principal | Sharpe Management Consulting LLC

Mr. Sharpe is a long time (+30 years) Cybersecurity, Privacy and Digital Transformation expert with real-world operational experience. Unlike many people in this space, Mr. Sharpe has real world operational experience and has influenced national policy. He has spent much of his career helping large corporations and government agencies reap the rewards afforded by advances in technology (Digital Transformation) while mitigating cyber threats. This provides him a pragmatic understanding of the delicate balance between Cybersecurity, Operational Effectiveness, and Business realities. He began his career at NSA moving into the Management Consulting ranks building practices at Booz Allen and KPMG. He subsequently co-founded two firms with successful exits. He has participated in over 20 M&A transactions. He has delivered to clients in over 20 countries on 6 continents. Mr. Sharpe holds degrees in Electrical Engineering from New Jersey Institute of Technology (NJIT), Technical Management from Johns Hopkins University (JHU), and Business from Columbia Business School. He is a published author, speaker, instructor, and advisor. He serves on industry forums and pays it forward as a mentor at an incubator.