Past Events

Identity and Access Management is a fundamental and critical cybersecurity capability for businesses of all sizes. To protect your business from fraud and unauthorized system and data access, you want to take steps to ensure that only the right people and technologies have the right level of access to the right resources at the right time.

For many busy small business owners, the use of passwords has been the primary method for locking down access to sensitive systems and data. However, passwords alone are not effective for protecting your data from most attackers. They have become too easy for threat actors to exploit at scale and with limited effort. So that leaves us with the question: what can a small business owner with limited resources do to protect their systems and information from unauthorized access?

During this webinar, we’ll take it back to the fundamentals to discuss practical steps small businesses can take to enhance their identity and access management, resulting in a stronger, more resilient business in the face of increasing cybersecurity risks. We will cover:

• Current guidance and leading-practices for multi-factor authentication (MFA), including phishing-resistant MFA.
• Identity and Access Management approaches to consider as your business grows.
• How identity and access management is covered in the NIST Cybersecurity Framework 2.0.

Please join CISA and the IT SCC in our 2024 Cybersecurity Awareness Month Series. This event is a partnership between CISA IT Sector Management and the IT Sector Coordinating Council to bring valuable information from Government and Private Sector experts to small and medium sized businesses operating in or adjacent to critical infrastructure. For 2024 we are focusing on Artificial Intelligence. The discussions throughout this series will discuss different aspects of AI, understanding how it could effect your environment, what the research community is developing and seeing, and what to expect moving forward when discussing AI safety. 

Who should attend:

While the focus of the content will be centered around small and medium businesses there are prominent discussions happening that will provide value to businesses of any size. Discussions around safety effect all sized businesses and many times all American citizens due to the interconnectivity of IT environments. This effort stems from the IT sector and will maintain that origin within the discussions but again, due to the interconnectivity of the sector, we encourage all 16 critical infrastructure sectors to attend and will receive value from attending. 

What to Expect:

For week three we will be discussing Principles and Guidelines surrounding AI. This will be a panel discussion with industry leaders. Information learned here can be used to advance your company's programs on how AI can be used efficiently and safely throughout your environments. 

Attention all small business owners! In 2024, data breaches are at an all-time high, impacting billions of people and causing unprecedented financial and personal damage. Don’t let your business or personal security be compromised by the surge in cybercrime!

What you'll learn:

• Big Data Breaches of 2024: Discover the major breaches making headlines this year and understand their impact on both individuals and businesses.
• Protect Yourself: Get actionable tips on safeguarding your identity and finances if you find yourself involved in a data breach.
• Cybersecurity Best Practices: Learn how to fortify your defenses against bad actors who exploit weak security to steal your data, money, and reputation.
• Risk Reduction Strategies: Find out what you can do to minimize the chances of falling victim to cybercrime and ensure your company is protected.
• Action Plan for Breach Notification: Understand the steps to take immediately if you’re notified of a data breach affecting you or your organization.

Why Attend?

Cybersecurity is not just an IT issue; it's a critical aspect of protecting your business and personal assets. This webinar is your chance to get ahead of potential threats and arm yourself with the knowledge to defend against them. Equip yourself with the knowledge to stay safe in an increasingly dangerous digital world.

Please join CISA and the IT SCC in our 2024 Cybersecurity Awareness Month Series. This event is a partnership between CISA IT Sector Management and the IT Sector Coordinating Council to bring valuable information from Government and Private Sector experts to small and medium sized businesses operating in or adjacent to critical infrastructure. For 2024 we are focusing on Artificial Intelligence. The discussions throughout this series will discuss different aspects of AI, understanding how it could affect your environment, what the research community is developing and seeing, and what to expect moving forward when discussing AI safety. 

Who should attend:

While the focus of the content will be centered around small and medium businesses there are prominent discussions happening that will provide value to businesses of any size. Discussions around safety effect all sized businesses and many times all American citizens due to the interconnectivity of IT environments. This effort stems from the IT sector and will maintain that origin within the discussions but again, due to the interconnectivity of the sector, we encourage all 16 critical infrastructure sectors to attend and will receive value from attending. 

What to expect: 

This installment aims to create a baseline of understanding of AI and how it could be used for or against your organization. Ensuring everyone is on the same page of definitions, knowledge, and understanding of AI is critical to ensuring we move forward to a safer future, together. An invaluable asset to our nation's security is the research community. Dr. Zico Kolter from Carnegie Mellon University will be joining us for this event to share his knowledge on AI as one of the nation's brightest minds on the subject. 

Join us virtually on October 16 and October 23, 2024, for the SBA Cyber Summit, your premier destination for mastering cybersecurity in the small business landscape. This invaluable event is completely free to register and attend! 

Discover cutting-edge strategies and solutions from a diverse lineup of experts, including top cybersecurity specialists, business coaches, peer entrepreneurs, Federal and state program managers, and leading corporate technologists. Gain actionable insights, practical advice, and hands-on guidance tailored to the unique needs of small business owners and entrepreneurs. 

Don't miss this opportunity to secure your business's future and connect with industry leaders who can help you navigate the complex world of cybersecurity. Reserve your spot today and empower your business with the knowledge and tools to thrive in a digital age! 

Please join CISA and the IT SCC in our 2024 Cybersecurity Awareness Month Series. This event is a partnership between CISA IT Sector Management and the IT Sector Coordinating Council to bring valuable information from Government and Private Sector experts to small and medium sized businesses operating in or adjacent to critical infrastructure. For 2024 we are focusing on Artificial Intelligence. The discussions throughout this series will discuss different aspects of AI, understanding how it could effect your environment, what the research community is developing and seeing, and what to expect moving forward when discussing AI safety. 

Who should attend:

While the focus of the content will be centered around small and medium businesses there are prominent discussions happening that will provide value to businesses of any size. Discussions around safety effect all sized businesses and many times all American citizens due to the interconnectivity of IT environments. This effort stems from the IT sector and will maintain that origin within the discussions but again, due to the interconnectivity of the sector, we encourage all 16 critical infrastructure sectors to attend and will receive value from attending. 

What to expect: 

In this first installment of the series we will be discussing the State of our Nation's Cybersecurity from CISA and Industry leaders. Discussing our path forward as well as what has been learned is critical to advancing the safety and efficacy of our national defense against cyber threats. 

CISA is proud to offer the Incident Response Triage Series: Cyber Threat Intelligence Development.  We are excited to share this information with stakeholders across the federal enterprise and nationally.

This webinar is intended for those responsible for cybersecurity operations, incident response, and cyber threat intelligence functions within an organization’s IT and cybersecurity teams.

Cyber adversaries are on the move. Their tactics, techniques, and procedures (TTP) evolve rapidly. The defenses in place today, even when good, may not be good enough tomorrow. Tapping into cyber threat intelligence (CTI) and streamlining a priority focused CTI capability is essential to maintaining a proactive defensive posture. This webinar equips individuals with the foundational knowledge necessary to establish or improve upon a CTI capability within organizational cybersecurity operations.   

• Key guidance for organizations: Gain insights on enterprise instrumentation tools and methodologies that streamline incident response.  

• Job Aid: Receive helpful guide with tips on how leverage OSINT (open-source intelligence) to gather CTI (cyber threat intelligence).   

• Case study: Explore a high-impact, global cyberattack, dissecting the tactics, techniques, and procedures that defined the incident.  

• Knowledge check: Conclude your learning experience with a knowledge check designed to ensure readiness in applying these critical concepts in a real-world incident.

The Cybersecurity and Infrastructure Security Agency’s (CISA) Information and Communications Technology (ICT) Supply Chain Risk Management (SCRM) Task Force presents its latest product, “Software Acquisition Guide for Government Enterprise Consumers: Software Assurance in the Cyber-Supply Chain Risk Management (C-SCRM) Lifecycle” (Software Acquisition Guide). The Task Force developed the Guide in response to the core challenges of software assurance and cybersecurity transparency in the acquisition process. The Guide provides individuals in software acquisition roles who support government agencies with a single point of guidance for achieving software assurance during software design, development, deployment, and operational use. Join the Task Force as they host a two-part webinar series to discuss how the Guide can help organizations increase supply chain resilience through software assurance. 

Soon it will be October - Cybersecurity Awareness Month! Which makes it the perfect time to review and reinforce your business’s security practices.

This webinar will provide an overview of the most pressing cybersecurity issues facing small businesses today, along with practical steps to enhance your defenses. We’ll cover essential topics such as:

• employee training
• data protection
• and how to create a security-first culture in your organization.

Be prepared to start the month with a strong focus on protecting your business from cyber threats!

C-SCRIP invites you to attend this webinar on September 24 at 3:00pm EDT. In this one-hour webinar, the American Registry for Internet Numbers (ARIN) will provide any overview of Resource Public Key Infrastructure (RPKI) and how it can help enhance the routing security of your IP prefixes.

In this webinar, participants will:

• Gain a clear understanding of RPKI and its purpose;
• Identify the key components of RPKI infrastructure; and
• Use the prescribed steps to successfully create a Route Origin Authorization in ARIN’s hosted RPKI.

Please register here. The webinar will be recorded and posted at a later time for those unable to attend on September 24. 

Speaker Bio: Brad Gorman is the Sr Product Owner, Routing Security at ARIN, and is the community resource for RPKI, Internet Routing Registry, and other similar topics that impact routing security within the ARIN region and the greater internet ecosystem.

Mr. Gorman has worked in the Internet community since the mid-1990s as a network engineer at service providers like America Online, Time Warner Cable and Charter Communications. He also spent three years as the peering coordinator for Verisign. Brad represents ARIN at the other Regional Internet Registries in the RPKI community, at the Internet Engineering Task Force, and industry conferences and meetings.