Information Security

OIS Training Opportunities!

ISO Essentials Training Sessions

This half day class is designed for state Chief Information Officers, Information Security Officers, their backups, Security Professionals being prepared for an ISO assignment and those who want to learn more about information security policy and compliance. It is highly recommended that this course be taken prior to the 2 day ISO Basic Class. The focus of the ISO Essentials Class is the foundation of a security program. Topics covered include the ISO role, SAM 5300, SIMM 5300, NIST and the State Foundational Framework and Compliance reporting. The topics in this class will not be covered in depth in the ISO Basic Class. If you have any questions, contact the Office of Information Security at (916) 445-5239 or at Security@state.ca.gov.

 

 

REGISTER NOW: October 10, 2018 – 9:00 AM – 12:30 PM

ISO Basic Training

The two-day ISO Basic Training Class is designed for state Chief Information Officers, Information Security Officers, their backups, and Security Professionals being prepared for an ISO assignment. It is highly recommended that participants attend the half-day ISO Essentials Class PRIOR to taking this class as the topics in the ISO Essentials class are not covered in-depth in the ISO Basic Training Class. This two day class presents an overview of the Information Security Officer’s role and responsibilities, state agency security and privacy requirements, risk management, incident reporting and the CDT Information Security Office’s expectation from an enterprise security oversight perspective. If you have any questions, contact the Office of Information Security at (916) 445-5239 or at Security@state.ca.gov.

 

 

REGISTER NOW: October 23-24, 2018 – 9:00 AM –  4:00 PM

NIST Security Training

The California Office of Information Security is hosting a free, all-day, seminar on the United States Federal Government’s National Institute of Standards and Technology (NIST) standards, guidelines, and products and how these tools can assist government agencies in their Information Technology (IT) security activities and in meeting state mandated policy requirements.  This class is designed for government staff with interest or responsibility for implementing or maintaining information security, risk management, privacy, technical recovery or incident response or general IT staff, those involved with procurements or information technology or services. A team of experienced staff from the NIST IT Laboratory Computer Security Division will educate participants on:

 

 

 

  • Overview of NIST
  • Federal Information Security Management Act
  • The Security Standards Landscape
  • Security Standards and Product Assurance
  • Special Publication 800-53R4 and coming Revision 5 changes
  • FIPS 199 – Data Classification & FIPS 200
  • NIST SP 800-30, SP 800-37, SP 800-39 : Risk Assessment and Management

This training will be held at the California Secretary of State Auditorium. If you have any questions, contact the Office of Information Security at (916) 445-5239 or at Security@state.ca.gov.

Future date to be announced soon! 

NIST Training Workshops

The California Office of Information Security is hosting a free, all-day, WORKSHOP on the NIST standards, guidelines, and products and how to use these tools in the development, maintenance and support of a departments IT security activities to be compliant with state mandated policy requirements.  This all-day seminar will include hands-on use of tools and discussion of best practices, implementation and evaluation. A team of experienced staff from the NIST IT Laboratory Computer Security Division will conduct a one-day workshop on:

  • Risk Assessment
  • Risk Management
  • Assessment Plan Development
  • Contingency Plan Development
  • Continuous monitoring strategy

This training will be held at the California Secretary of State Multi-Purpose Room . If you have any questions, contact the Office of Information Security at (916) 445-5239 or at Security@state.ca.gov. These classes have limited space.  Both sessions cover the same material.

Future date to be announced soon!

Cybersecurity Maturity Metrics Workshop

This four hour workshop is intended for Information Security Professionals, Chief Information Officers, and others in Information Technology interested in learning how to use the Cybersecurity Maturity Metrics workbook, in advance of receiving their official score from the Office of Information Security. This tool can be a valuable resource in advance of an Audit or third party Independent Security Assessment.

This workshop will be held at the California Department of Technology Training Center in Rancho Cordova. If you have any questions, contact the Office of Information Security at (916) 445-5239 or at Security@state.ca.gov.

REGISTER NOW: Monday, September 10, 2018 –  1:00 PM – 5:00 PM