IN-PERSON ATTENDANCE WITH STREAMING
External Dependency Management
by Mike Jackson
This presentation will provide a set of best practices in the 4 major areas for managing external dependencies. As no organization can operate autonomously, external dependencies are inherent risks that must be identified and managed to support the sustainment of critical services. We will define what a critical service is and how to identify, categorize, and effectively manage the external dependencies that support that critical service.
BIO: Mike Jackson serves as the Cybersecurity State Coordinator (CSC) for the State of Oklahoma at the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA). As the CSC assigned to Oklahoma, Mike is responsible for all aspects of communicating and coordinating CISA’s cybersecurity preparation, response, and mitigation activities related to critical infrastructure stakeholders located within the State Local Tribal & Territorial (SLTT) area of Oklahoma. Additionally, Mike is responsible for conducting risk assessment and cybersecurity surveys with private and public SLTT stakeholders.
Mike brings over 25 years of extensive hands-on experience in working with on-premises enterprise level, small and medium businesses, and hybrid cloud data asset environments across the financial, health, government, defense, and private business sectors.
Prior to joining CISA, Mike traveled globally as an independent consultant performing cybersecurity work and training on behalf of several sponsored DoD contracting organizations. He also consulted private organization’s executive level or technical staff on information security threat assessments, risk framework adoption, IT GRC policy development, cybersecurity best practices, control gaps, and control objective mapping for IT risk assessments, 3rd Party audits and remediation reports for the following requirements: GDPR, FFIEC, SOX, CCPA, COBIT, CSF, PCI-DSS, ISO 27001 Series, SSAE-16/18 SOC 1&2, NIST 800-53 Controls, NIST 800-171 and 800-37 Risk Management Framework.
Mike is an Army veteran who holds a master’s degree in information systems management with a focus in information security and various cybersecurity and information technology certifications, including the CISSP, CISM, and CISA Certifications. In September 2020 he was certified as 1 of the initial 72 selected candidates for the Cybersecurity Model Maturity Certification (CMMC) Certified Level 3 Provisional Assessor Certification for the new CMMC DoD 3rd Party Supplier Assessment Program and in April 2021 he was also selected by the CMMC-Accreditation Board as a CMMC Provisional Instructor candidate.
LOCATION:
Oklahoma City - Primary Location
Oklahoma City Community College (OCCC)
Attendees can park anywhere on campus except for slots marked Faculty/Staff or Handicapped without a valid permit. Meeting is held on the 4th floor of the Library in Room 401.