CCoE Webinar, August 27: NIST 800-171 Compliance Program at UConn

[Valerie Vogel <vvogel () EDUCAUSE EDU>]

Please see the announcement below about an upcoming webinar on NIST 800-171 compliance with guest speaker Jason Pufahl 
(University of Connecticut).
Thank you,
Valerie

From: "Dopheide, Jeannette M" <jdopheid () illinois edu>
Reply-To: "ctsc-announce-l () list iu edu" <ctsc-announce-l () list iu edu>
Date: Monday, August 13, 2018 at 6:35 AM
To: "announcements () trustedci org" <announcements () trustedci org>
Subject: [ctsc-announce-l] CCoE Webinar August 27th at 11am ET: NIST 800-171 Compliance Program at U. Connecticut


<https://4.bp.blogspot.com/-ClhW8DCSNxg/W225KkPpKoI/AAAAAAAAA_8/VSiJ5Mo1PMU5tEHqn-V2ZOQlpY_QonvOgCLcBGAs/s1600/blog_logo.png>[https://4.bp.blogspot.com/-ClhW8DCSNxg/W225KkPpKoI/AAAAAAAAA_8/VSiJ5Mo1PMU5tEHqn-V2ZOQlpY_QonvOgCLcBGAs/s320/blog_logo.png]<https://4.bp.blogspot.com/-ClhW8DCSNxg/W225KkPpKoI/AAAAAAAAA_8/VSiJ5Mo1PMU5tEHqn-V2ZOQlpY_QonvOgCLcBGAs/s1600/blog_logo.png><https://4.bp.blogspot.com/-ClhW8DCSNxg/W225KkPpKoI/AAAAAAAAA_8/VSiJ5Mo1PMU5tEHqn-V2ZOQlpY_QonvOgCLcBGAs/s1600/blog_logo.png>Jason
 Pufahl is presenting the talk "NIST 800-171 Compliance Program at University of Connecticut" on Monday August 27th at 
11am (Eastern).



Please register here<https://iu.zoom.us/webinar/register/WN_KZ2VvLjkR5iiQ4tpqQnujw>. Be sure to check spam/junk folder 
for registration confirmation email.



The Department of Defense established DFARS 252. 204-701 which specifies that any research containing Controlled 
Unclassified Information (CUI) be protected using NIST 800-171. This presentation will discuss the University of 
Connecticut's approach to implementing the NIST 800-171 framework, including: Contracting, Faculty Engagement, 
Infrastructure Implementation, Training and Controls Review.



The intention of this presentation is to provide a complete picture of what compliance with the NIST Standard requires. 
I will endeavor to describe the entire compliance process starting from conceptualization of the technology solution 
through to the post implementation review. The talk will be designed to appeal to compliance staff, technical staff and 
project managers and will emphasize elements required to build and sustain the compliance program. I will discuss the 
technology elements of our solution, generally, but will focus on how the technologies chosen met our goals of managing 
as many of the compliance requirements centrally as practical while providing a flexible solution.



Jason Pufahl is the Chief Information Security Officer for the University of Connecticut. He has 20 years of 
infrastructure and information security experience and has spent the last 10 years dedicated to information security 
and privacy. He has responsibility for information security for the institution, encompassing security awareness and 
training, disaster recovery, risk management, identity management, security policy and regulatory compliance, security 
analytics, and controls implementation.

Jason works closely with both the administrative and academic areas of the University. He is a member of the 
University’s Data Governance Committee, Joint Audit and Compliance Committee, and Public Safety Advisory Committee. He 
is also member of the University IRB with a primary focus of improving data privacy and security practices related to 
institutional research.

Jason has a Master’s in Education Technology and has a passion for professional development, security training and 
awareness. He designed and ran an information security and awareness game called HuskyHunt, founded the Connecticut 
Higher Education Roundtable on Information Security (CHERIS) to provide a quarterly forum for sharing of best practices 
in the field of information security targeted at higher education institutions in Connecticut and is active in the 
security community nationally. He is a frequent conference speaker and is a member of the NERCOMP vendor and licensing 
committee.

Presentations are recorded and include time for questions with the audience.

Join Trusted CI's announcements mailing list<https://list.iu.edu/sympa/subscribe/ctsc-announce-l> for information about 
upcoming events. To submit topics or requests to present, see our call for 
presentations<https://trustedci.org/webinars-cfp>. Archived presentations are available on our 
site<https://trustedci.org/webinars>under "Past Events."





------

Jeannette Dopheide

Sr. Education, Outreach, and Training Coordinator

National Center for Supercomputing Applications

University of Illinois at Urbana-Champaign