OCTOBER 2013 MONTHLY MEETING

Date:  October 16, 2013 – 5:00 pm – 7:15 pm

Jim Acerra on Integration of Security within INCOSE Systems Engineering Activities [Presentation Slides in PDF]

How does information security integrate with systems engineering life cycle activities? This month’s presentation by Jim Acerra will give us insight into ensuring successful integration of these two disciplines. We all can learn more about information security and its critical role in today’s systems. This will be a great opportunity to improve our understanding and get practical advice on implementing security into systems. All INCOSE members and interested friends are encouraged to join us for this informative and useful presentation.

Abstract:

Abstract: Systems Engineers are frequently at odds with their security counterparts, often regarding them as roadblocks to their objectives. This can lead to a battle for control on a program or project, which is unnecessary and counterproductive. During this battle, a system can be developed as highly secure, but have limited or flawed functionality, or can be highly functional, but be woefully lacking in security. Integration of security within the systems engineering process does not have to be an either/or proposition. There is a way of integrating security within the systems engineering process.

By overlaying security activities on INCOSE Systems Engineering Activities, synergy between systems engineering and security engineering is achieved by looking at each activity as being two-pronged: functional and secure. This presentation provides an overview of the INCOSE Systems Engineering Activities and their corresponding security activities. It includes an example of security integration in a software systems engineering project that uses the Agile Method. The example project demonstrates appropriate security touch points within the engineering activities to ensure appropriate and adequate security is “baked in” vice being “bolted on” into the system. The Lessons learned from the project can be adapted to deliver success with other systems engineering activities and projects. The target audience for the presentation is systems engineers who wish to strike a balance between system functionality and security.

About the Speaker:

  • Completed 20 Years of Honorable service in the United States Navy
  • Over 26 years’ experience in information technology and systems security
  • Currently Serves as the Systems Engineering and Technical Assistance (SETA) Information Assurance
  • Subject Matter Expert (SME) consultant for a defense contractor in support of a major naval intelligence acquisition program
  • Adjunct Faculty member at National University, teaching graduate Cyber Security and Information Assurance Studies
  • Founding President for the (ISC)2 San Diego County Chapter
  • Executive Board Member for the San Diego IEEE Cyber Security Special Interest Group
  • Member of the Institute of Electrical and Electronics Engineers (IEEE)
  • Member of the International Systems Security Association (ISSA)
  • Member of the Electronic Commerce Council (EC Council)
  • Bachelor’s degree in Information Technology (National University-Magna Cum Laude)
  • Master’s degree in Information Technology with a Specialization in Information Assurance and Security (Capella University-with Distinction)
  • Certifications: Certified Information Systems Security Professional (CISSP), Certified Chief Information Security Officer (C|CISO), and Certified Microsoft Systems Engineer (MCSE)
  • Past President and CEO for a regional group of an international, non-profit, charitable organization that supports those in need, youth, military, and senior citizens

Schedule:

5:00 – 6:00 PM  Sign-in and Networking/Dinner

6:00 PM  Speaker Presentation

7:15 PM  Adjourn

Location:

CareFusion

Bldg D, Room C300

10020 Pacific Mesa Blvd

San Diego, CA 92121

Leave a Reply