Author: markriddle191017

Controlled Unclassified Information Security Requirements Workshop

by markriddle191017, posted in Events & reviews, NIST SP 800-171

On October 18, the National Institute of Standards and Technology (NIST), in coordination with the Department of Defense (DoD) and the CUI Executive Agent, will host an informational workshop providing an overview of Controlled Unclassified Information (CUI), the Defense Acquisition Regulations System (DFARS) Safeguarding Covered Defense Information and Cyber Incident Reporting Clause, and NIST Special Publications 800-171 and 800-171A. This workshop will also feature panels of Federal Government representatives discussing expectations for evaluating evidence and implementing the CUI Security Requirements and industry representatives sharing best practices and lessons learned.

For a recording of the event please visit: https://www.nist.gov/news-events/events/2018/10/controlled-unclassified-information-security-requirements-workshop

 

Industry Day

by markriddle191017, posted in Events & reviews

December 10, 2018
9:00 a.m. – 3:00 p.m.
McGowan Theater
National Archives Museum
701 Constitution Avenue, NW
Washington, DC 20408

This day is an opportunity for Executive branch entities or other stakeholders (i.e., Nonfederal organizations) to view and learn about products and services that have been developed for the CUI Program. This event is free to all presenters, vendors, and attendees.

If you are interested in attending this event please RSVP to CUI@NARA.GOV

If you are interested in a booth or in presenting, please submit this  form to CUI@NARA.GOV NLT October 12, 2018. Booth and presentation timeslots will be assigned on a first come first serve basis. Submissions will be approved by October 19, 2018.

• 12 booths (each includes a 6 foot table) will be offered to display and present products and services related to the CUI Program.

• 6 time slots (each 30 minutes) will be offered to address products and services related to the CUI Program.

CUI Symposium Hosted by The Department of Veteran Affairs

by markriddle191017, posted in Events & reviews

The Department of Veteran Affairs will host a CUI Symposium on November 8, 2018, 2:30 -4:00 pm at 810 Vermont Avenue NW, Washington DC 20420, in the G.V. “Sonny” Montgomery Veterans Auditorium, Room 230.

Panel members from DOI, IRS and CUI Executive Agent will also share their CUI Deployment knowledge and experiences.

Registration is scheduled to open in early October.  Please contact Dr. Dorothelia Byrd with questions @ Dorothelia.Byrd@va.gov

CUI Updated Training Videos

by markriddle191017, posted in Common questions, General updates, Marking & examples

ISOO has developed seven new training modules. These videos offer the most up-to-date information about the CUI Program.

Agencies (and stakeholders) may wish to use these videos to supplement their CUI Program training. However, it is important to note that ISOO does not track completion of these modules, so if your organization wishes to require viewing of these videos as part of your CUI training program, you must download and run them from organization’s training platform.  MP4 versions will be made available for download from the CUI Registry in the coming weeks.

NIST Special Publications Update

by markriddle191017, posted in General updates

Two major NIST publications are about to be finalized on June 14: NIST Special Publication (SP) 800-171A, “Assessing Security Requirements for Controlled Unclassified Information”; and an update to the NIST SP 800-171, “Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations.” The draft 171A text may be found on the NIST site: https://csrc.nist.gov/publications/detail/sp/800-171a/draft.  The 800-171A is intended to help organizations develop assessment plans and conduct assessments of the security requirements in NIST SP 800-171, which defines the requirements for protecting CUI on non-Federal systems consistent with the CUI Federal regulation (32 CFR 2002.14h2).

​CUI Program Update to Stakeholders​​ (Webinar link and call-in ​information)

by markriddle191017, posted in Events & reviews, General updates
​​The next scheduled webinar will be 15 May 2018 (1-3 EDT). 
P​lease use the following to access the webinar:
Dial-in Number:  800-988-0218
Audience passcode: 2160962

URL: https://www.mymeetings.com/nc/join/

Conference number: PWXW7483514

Participants can join the event directly at:
https://www.mymeetings.com/nc/join.php?i=PWXW7483514&p=2160962&t=c

 

The webinar will include:

  • A brief overview of the CUI program;
  • An update on agency implementation efforts;
  • A review of all existing notices, policies, training and resources currently available from the CUI Registry;
  • The status and plans for a CUI Federal Acquisition Regulation Rule; and
  • Time for Questions and Answers.  Note:  During the webinar, participants may submit questions through the instant messenger feature.

Controlled Unclassified Information (CUI) Symposium by the U.S. Department of Veterans Affairs

by markriddle191017, posted in Events & reviews

Please join the Department of Veterans Affairs (VA) for its Controlled Unclassified Information (CUI) Symposium to learn about the CUI Program, associated implementation efforts, and expected federal impact. The symposium will feature VA CUI subject matter experts, alongside panelists from the National Archives and Records Administration (NARA), the U.S. Department of State (DoS) and the Internal Revenue Service (IRS).

EventBrite Registrationhttps://www.eventbrite.com/e/controlled-unclassified-information-cui-symposium-tickets-41336909810

Address: G.V. “Sonny” Montgomery Veterans Auditorium (RM 230), 810 Vermont Ave NW, Washington D.C. 20420

Controlled Unclassified Information (CUI) is information that the Government creates or possesses. CUI requires protection under laws, regulations, or Government-wide policies, and it can correspond to any of the following sources: privacy, health, military, information technology (IT), contract, and personnel data.

Within VA, the Office of Information and Technology’s (OIT) Department of Quality, Privacy, and Risk (QPR) hosts the Controlled Unclassified Information (CUI) Program, a consolidation of best practices that standardize how sensitive information is marked, handled, disseminated, decontrolled, and destroyed across federal agencies.

FAQs

Are there ID or minimum age requirements to enter the event?

You must be a US government employee or contractor with a valid government ID to attend the VA CUI Symposium.

How can I contact the organizer with any questions?

Please send any questions about the VA CUI Symposium to cui@va.gov.

Do I have to bring my printed ticket to the event?

Yes, please print your ticket and bring it to the event.

Is my registration fee or ticket transferrable?

No, tickets are not transferrable.

Is it ok if the name on my ticket or registration doesn’t match the person who attends?

No, the name on your ticket must match the name on your valid government ID to enter the event.

CUI and re-marking legacy Information

by markriddle191017, posted in Common questions, Marking & examples

Agencies can waive the requirement to re-mark legacy information with the new CUI markings while the CUI is in their control.  The CUI Program does not require the agencies to re-mark unless reusing and sharing the information with others outside of their agency.  In addition, because the CUI regulation also contains flexibility in handling such things as existing on-line databases with numerous PDF documents, a flash screen may suffice to alert users that a law, Federal regulation, or Government-wide policy requires safeguarding and dissemination controls.