Events

Join the NIST National Cybersecurity Center of Excellence (NCCoE) on August 27, 2025 for a virtual event dedicated to exploring Secure Software Development, Security, and Operations (DevSecOps) practices. This interactive event will showcase the NCCoE’s plans to develop guidelines that demonstrate the implementation of best practices based on NIST’s Secure Software Development Framework (SSDF) and gather feedback to inform the project.

Small businesses are increasingly targeted by cyber threats, often with limited resources to respond. This session equips business owners with practical knowledge and tools to protect their operations, customers, and reputation.

Session highlights:

• Learn how cyber threats impact small businesses and why awareness matters.
• Recognize phishing, ransomware, and other risks that target small enterprises.
• Hear about local incidents to understand vulnerabilities close to home.
• Understand the financial, legal, and operational consequences of cyberattacks.
• Build a foundation for safer business practices and data protection.
• Develop daily habits to reduce risk and improve security.
• Discover affordable solutions tailored for small business needs.
• Foster awareness among staff and build a security-first mindset.
• Stay informed about regulations and responsibilities affecting your business.

Join the NIST NCCoE soon for a series of virtual working sessions to provide input on the NIST Cybersecurity Framework (CSF) Cyber Artificial Intelligence (AI) Profile (“Cyber AI Profile). These will serve as a continuation of the April workshop and are intended for cybersecurity and AI leaders. The goal is for attendees to provide detailed, technical input to inform the Profile’s development.  

Each session in this series will explore one of the three Focus Areas planned for the Cyber AI Profile. We will use the Categories in the CSF 2.0 Core to guide our discussions. Topics will include: 

• Recap of NIST’s relevant work completed.
• Questions and feedback regarding Focus Area descriptions.
• Identifying key AI considerations for CSF 2.0 Categories.   

Session #3 Topic Background: Thwarting AI-enabled Cyber Attacks 

There are a multitude of ways AI is enabling cybersecurity adversaries. For example, AI capabilities are increasing the ease with which adversaries can exploit vulnerabilities as well as expand capabilities for generating new effective attacks, including developing and executing customized attacks that are targeted for a particular organization. Adversarial use of AI may also amplify risks in the supply chain. These changes emphasize needs for modifying cybersecurity practices, such as those around red teaming and cyber-attack detection. This working session will explore how the Cyber AI Profile can help organizations focus on activities that build resilience in the face of these new threat vectors. 

Who should attend? 

These events are open to stakeholders from industry, academia, and government that have expertise to share regarding cybersecurity for AI and AI for cybersecurity.  Please come ready to share your knowledge and insights during these interactive working sessions! 

Agenda: 

Each session in this series will focus on a single Focus Area in the Cyber AI Profile. We will use the Categories in the Cybersecurity Framework 2.0 Core to guide our discussion. Topics will include: 

• Recap of work completed to date
• Questions and feedback regarding Focus Area descriptions
• Identifying key AI considerations for CSF 2.0 Categories  

Prepare to Participate: 

To prepare for participation in this process, we recommend reviewing the Cybersecurity Framework 2.0 Core and learning more about the Cyber AI Profile development effort by reviewing the following resources: 

• NIST Cybersecurity, Privacy, and AI Program
• Blog post:  Managing Cybersecurity and Privacy Risks in the Age of Artificial Intelligence: Launching a New Program at NIST | NIST
• NCCoE Project Page:  Cyber AI Profile
• Cybersecurity and AI Workshop Concept Paper (posted in advance of the April 3, 2025, workshop) 

Visit the event pages for the Securing AI System Components and Conducting AI-enabled Cyber Defense sessions to learn more! If you are unable to attend your desired session, you are welcome to provide us feedback any time by emailing us: [email protected]. 

Join us for a free virtual workshop to learn more about the federal resources available to help protect your company against cyber-attacks. The U.S. Small Business Administration (SBA), U.S. Cybersecurity & Infrastructure Security Agency (CISA), and the Naval Criminal Investigative Service (NCIS) will be on hand to provide training on Cybersecurity and Counterintelligence, specifically for manufacturers and exporters. 

Cyber and insider threats pose significant risks to organizations, networks, and critical infrastructure. Cyber threats involve malicious activities that compromise the confidentiality, integrity, and availability of systems and data, often executed by external actors but sometimes involving insiders who exploit their access. The insider threat refers to the potential for individuals with authorized access to harm their organization, either intentionally or unintentionally. These threats are significant concerns for both cybersecurity and counterintelligence.

In this training, participants will receive valuable insights from Federal agencies responsible for cybersecurity and counterintelligence initiatives. These initiatives focus on addressing advanced threat actors and managing the evolving threat landscape. Attendees will have the opportunity to engage with our presenters by asking questions and discussing concerns related to cyber and insider threats. Our presenters will share effective strategies for asset protection and threat mitigation.

From major ransomware incidents to attacks on critical infrastructure, cyber headlines are everywhere. But what do these threats mean for small businesses?

This webinar decodes recent high-profile breaches—like those affecting healthcare systems, government agencies, and retailers—and highlights lessons small businesses can apply to prevent similar risks.