Public Sector Workshop

Monday, October 24, 2022 | 8:00 am – 3:30 pm

Target Audience:  municipality, city, county, state, tribal CISOs, Chief Security Officers, CROs, CIO, CTOs, County Commissioners, those involved with exposure to cyber risk. GRC Governance, Risk and Compliance officers and those involved with Data Privacy. Possibly Chief Financial Officers that must manage risk.  

Event Vision
The public sector – it’s more than the government. Our way of life is organized, delivered, and made possible by countless publicly controlled or publicly funded agencies, enterprises, and other entities delivering a wide range of products, services, and programs. And as citizens and taxpayers we expect quality, convenience, and cost-effectiveness from all of these. But the promise of technology and connectivity to deliver these benefits is being undermined by the cybersecurity perils that plague our entire economy and undermine our confidence. 

In this track, we will focus on the cyber challenges faced by State, Local, Tribal, and Territorial governments and the ecosystem that operates around them. We’ll stand back and examine the cyber state-of-play for SLTTs as a whole, and also drill down to specific examples. We’ll look at what this community has in common both internally as well as with the economy at large. What are the challenges that all of us face, like budgets, policy, building a cyber workforce? How can we leverage and synchronize with Federal activities? We’ll also examine the role of the Multi-State Information Sharing and Analysis Center as both an information and a services hub for this entire community. And more importantly, what resources can we share, and what lessons can we learn from each other?

AGENDA

8:00 AM
Welcome Kickoff
Join us for our Public Sector Welcome Kickoff with Interim CISO John Israel!

John Israel, Interim CISO, State of MN


8:15 AM
Operation Excellence

How do you consolidate, maximize your investment, streamline efficiencies in an underemployed space.

Jeff Lubick, Regional Manager, CISCO Global Security Option


8:45 AM
What Are The Challenges Most States and Local Government Face Today?

Lessons learned from defending Ukraine – and why it matters to you. 

Joe Marshall, Sr. Strategist ICS/Threat Research, CISCO TalosEducation


9:15 AM
Enhancing Statewide Cybersecurity Programs – Building Collaboration and Support Networks

Cybersecurity is a team sport – and we are all on the same team, yet competition keeps coming into play. Competition for cyber-aware employees, competition for funding, and competition to deflect the bad guys to someone else. Focusing on our collaboration and cooperation are our best defenses to raise the tide and work together to improve our posture and protect our critical resources. This session will look at opportunities to consider for the future as we build the workforce of tomorrow, build better collaboration channels, and engage the resources available to us today.

John Israel, Interim CISO, State of MN


10:00 AM
Strategy Break


10:15 AM
Public Sector Cybersecurity: The State of the States, Local Governments, Tribes, and Territories

This overview will provide critical observations from this year’s Nationwide Cybersecurity Review (NCSR); an anonymous cybersecurity maturity self-assessment completed by thousands of SLTT governments and presented to Congress bi-annually. His presentation will include a brief on the threats and trends currently observed by the MS-ISAC and impacting SLTT governments, providing a summary threat landscape of the community. He will explore what the NCSR data can tell us about our risk reduction priorities considering increasing threats to SLTT, and help the audience consider how we can best leverage the NCSR to communicate those priorities to our law makers.

Emily Sochia, Manager, Maturity Services, Multi-State Information Sharing and Analysis Center (MS-ISAC)


10:45 AM
States Can Save the World. The All in Approach to Cybersecurity. 

North Dakota is this amazing place that most people haven’t been to yet. We have amazing things happening here, especially in the cybersecurity realm, stuff that is not happening anywhere else in America. North Dakota has redefined cyber security at the state government level. From comprehensive education Kindergarten through PHD to comprehensive defense for the executive branch, judicial branch, legislative branch, all K12, all Higher-Ed, all counties and all cities are just the start. Now crowning the first statewide High School Championships in Cyber security and leading a nationwide Join State Security Operations Center that covers over 60,000,000 people, North Dakota is solving the cyber problem defending against cyber-attacks is a round-the-clock job and having partnerships with other states to improves our ability to defend against these threats.

Shawn Riley, CIO, State of North Dakota


11:45 AM
Networking Lunch in EXPO


12:30 PM
Insights into Vulnerability Management

The State of Minnesota will delve into its approach where it abandoned a cumbersome reports-based vulnerability ticketing system in favor of a relationships-based model where security analysts meet with responsible teams and start a conversation centered around risk-based actionable information and remediation. Hear how their unique approach to vulnerability management leverages both relationships and technology to yield better results than any previous methods.

Neal Dawson, Information Technology Security Manager at State of Minnesota
Nancy Skuta Lead Information Security Analyst, ITS5, Threat and Vulnerability Management at MN.IT Services


1:20 PM
CISA Grant Program

On September 16, 2022, the Department of Homeland Security (DHS) announced a first-of-its-kind cybersecurity grant program specifically for state, local, and territorial (SLT) governments across the country.

Funding from the State and Local Cybersecurity Grant Program (SLCGP) and the Tribal Cybersecurity Grant Program (TCGP) helps eligible entities address cybersecurity risks and threats to information systems owned or operated by—or on behalf of—state, local and territorial (SLLT) governments.  Through two distinct Notice of Funding Opportunities (NOFO), SLCGP and TCGP combined will distribute $1 billion over four years to support projects throughout the performance period of up to four years. This session will provide and overview of the Program and how to connect within your state for funding.

Christopher Gabbard, Cyber Security Advisor – Region V, Office of Cybersecurity & Communications, CISA


1:50 PM
Strategy Break


2:10 PM
Implementing Statewide Cyber Plans – State-level Perspectives
CISA’s State and Local Cybersecurity Grant Program (SLCGP) creates new opportunities to fund cyber enhancements for SLTT government organizations nationwide and is delivered at the state level. State CIOs and CISOs are charged with leading efforts to build and implement statewide cybersecurity plans. Hear from multiple state resources directly on their plans to enact this program and build a whole-of-state approach to cybersecurity.

Peter Alsis, SOC Cyber Navigator, Minnesota IT Services
Shane Dwyer, CISO, State of Iowa
John Israel, Interim CISO, State of Minnesota
Shawn Riley, CIO, State of North Dakota
Ashley Podhradsky, VP, Research and Economic Development, Dakota State University


3:00 PM
The Rear View Mirror 

Since leaving the public sector former State of MN CISO reflects on lessons learned, the value of government buying power, MS-ISAC benefits, and more.

Chris Buse, CISO, Old Republic former MN State CISO


3:30 PM
Networking Reception in EXPO

Thank you to our Public Sector Host

THANK YOU TO OUR PUBLIC SECTOR STEERING COMMITTEE

Chris Buse, former MN State CISO, CISO, Old Republic
John Israel, Interim CISO, State of Minnesota
Jeff Lubick, Regional Manager, CISCO
Shawn Riley, CIO, North Dakota
Tony Sager, CIS
Rohit Tandon, former MN State CISO, CISO Essentia Health

Sponsorship Opportunities

To learn about available sponsorship opportunities, contact Jennifer Churchill at 763-548-1306 or jennifer.churchill@eventshows.com.