The DoD appears to lag behind civilian institutions in implementing innovative technologies in education and training settings. The briefer aims to provide both Industry and Military a better understanding of the steps required to authorize new systems or technologies. He’ll discuss the processes and procedures to use, as well as key terminology and references to help align critical DoD education and training requirements with industry capabilities. This lecture will provide a high-level overview of Federal and DoD Cybersecurity policies and procedures including FedRAMP, DISA FedRAMP+, DoD policy and the Risk Management Framework. Additionally, it will focus on new requirements needed to move systems into a cloud environment or leverage systems already approved. In order to provide real-world context, we’ll discuss how these Cybersecurity elements impacted systems being implemented in the Air Force Education and Training environment, focusing on the limitations and opportunities afforded to this critical mission/business area.
Aaron is a Government Civilian at Air Force, Air Education and Training Command where he works in the Commands Cybersecurity Office and is assigned as a Security Control Assessor Representative for the Air Force Recruit, Train and Educate Authorizing Official. In his role on the AO Staff, Aaron is responsible for the authorization process enabling all education and training systems in the Command. Aaron is a retired Air Force Cyber Operations Major who’s worked various assignments at Nellis AFB Nevada, Schriever AFB Colorado, Shindand AB Afghanistan, and Randolph AFB Texas. After his retirement in Feb of 2015, Aaron work with DSA Inc. for a year as a Cybersecurity Consultant before moving into his present position. He holds CISSP, PMP and ITILv3 Certifications.