Charlie Tupitza was the US Head of Cyber Resilience Best practices of RESILIA for AXELOS LLC for the past two years. AXELOS is the intellectual property owner of ITIL the defacto global IT service management best practice framework in both the private and public sectors. Charlie established relationships in both the private and public sector at the C level around cyber resilience enabling mission driven IT Service Management. He has had the opportunity to speak publicly, and participate in collaborative sessions promoting the sharing of lessons learned across both selectors with a focus on the financial, health, utility, supply chain, defense, defense industrial, as well as federal and state government.
He was a charter member of the Presidential Policy Directive-21 working group to identify cyber security training across the entire federal procurement community headed by the DHS.
Charlie has been responsible for providing enterprise solutions including for the maintenance repair and operation of the Space Shuttle program along with same support for facilities at Kennedy Space Center, Patrick AFB, and Cape Canaveral, ground based FAA equipment, all dams in the US, and Navy facilities while at MRO Inc.
Charlie has extensive experience in physical security with video surveillance at all land based points of entry into the US while at NTMI, providing gunshot detection systems of ShotSpotter in support of the Violent Crime Task Force of the FBI. He provided Software to automate the development of buffer zone protection plans for the DHS when they first identified Critical Infrastructure Sectors. His unique experience with both physical and cyber risk brings great value to the Forum.
Other experience includes being an active participant in the Software and Supply Chain Assurance Forum sponsored by the DHS, GSA, DoD, and NIST. He is a current working group member of the National Initiative for Cybersecurity Education (NICE). He participates in working sessions for the Cyber Security Framework (NIST) and the Incident Response and Recovery Working Group (DHS). He was the introducing member for the OASIS-Open Cloud Application Management for Platforms Technical Committee. He was a member of the DoD working groups of Environmental Data Standards, Collaboration, and Maintenance Repair and Operation.
itSMF USA Advancing Cyber Resilience through Collaboration
itSMF USA FUSION16
Las Vegas, NV November 02,
Experience Level: Advanced
This was a great success. There was a mix of people representing the government and private organizations, big and small participating. This was perfect for our value proposition.
The disconnection between ITSM and cyber resilience efforts across all sectors was obvious. Understanding this leads to great opportunity.
The focus of our session was to help identify the people who need to be at the table during the strategy phase of a product or service along with the value of collaboration. The attendees were left hungry for more time on the topic.
Advancing cyber resilience and business value through collaboration is a great opportunity.
We are excited to see our review of this session: Average Overall Scores: 1 – 5 ·Overall this session was: 5 ·Speaker(s) expertise/knowledge of subject: 5 ·Speaker(s) presentation skills: 5 ·Value of Q&A segment: 5 – Practicality: 5 ·Compliance with non-commercialism policy: 5 ·Should this session be repeated next year: 100% ·Would you recommend this speaker for future events: 100% ·Was the session content what you thought it would be: 100%
Joan and Charlie are speaking at this years itSMF USA annual conference in Las Vegas, NV from November 1-4, 2016 jointly hosted by industry icons itSMF USA and HDI
To register for this event go to FUSION 2016 here…
About our session:
Advancing Cyber-Resilience Through Collaborative Innovation
Experience Level: Advanced Facilitators: Joan Coolidge and Charlie Tupitza
Managing an effective response to cyber-attacks is one of the biggest challenges in today’s complex and interconnected world. It’s not enough to focus on cyber-security. This session will introduce ways you can lead organizations to reduce the impact of cyber-attacks at a manageable pace. Learn how to engage people to work together to find solutions, how to start the discussion from where participants are at the time of their meeting, and how to continue by strategically planning realistic approaches to greater cyber-resilience.
I enjoyed listening and participating in last public meeting of the Presidential Commission on Enhancing National Cybersecurity Sept 19th at the American University in Washington DC. I was given time at the end to address the commission and tell them what we are doing with the Forum, specifically addressing the need to shift thoughts to the strategy phase of activities so cyber supports the mission.
The panel asked if the United States needs another “Moon Shoot” like president Kennedy initiated, in this case for cyber. I answered this by saying we do not need to have a project without a direct business value. I mentioned that we need to support more efforts similar to the Space Station. Efforts like the NIST Cyber Security Framework supporting missions which will inter-operate and enable other missions, across private and public sectors and expandable to support countless missions.
I was set up for expressing my opinion of the importance of business strategy being supported by cyber when a person ahead of me was asked
the question “Who is in charge of cybersecurity strategy for the United States of America?” Everyone looked puzzled until a former CIO of OMB, Karen Evens, answered “the president”. OOPS.. this needs a fix! Soon. Ultimately it is the presidents responsibility but the president can not be thought of as in charge of it.
There were about 75 people in the audience. Most of them were from the Department of Commerce and Department of Homeland Security.
There were opportunities to speak to many of these people during breaks. On the top of the list of sidebar conversations for me was the draft release from the NIST for Baldrige Cybersecurity Excellence Builder, specifically about the leadership questions. Please find a copy at the link above and see page seven. We are very interested in linking business value to cyber in a way that shows how cyber enables business activities within the strategy phase.
Briefing on DESMF Edition III and IV with the working group and Global Forum to Advance Cyber Resilience Charlie Tupitza to lead briefing.
We are briefing our progress to the DESMF working group on 30 June. Part of our briefing is to suggest areas to be considered in DESMF Edition IV. DESMF Edition III was signed by the DoD CIO Terry Halvorsen last week.
We introduced our Forum to the CISSE attendees at this annual conference of the Centers of Academic Excellence in Philadelphia PA on 15 June.
Larry Wilson of the University of Massachusetts, Consultant David Moscowitz, and Joan Coolidge of the Forum discussed the importance of a holistic approach to cyber resilient services.
We announced our Common Lexicon release for cyber resilience.
We had the opportunity to discuss several topics including the value of a common lexicon, the NIST Cyber Security Framework, SP 800-160 and the National Initiative for Cyber Education in a service management environment, and education for the cyber workforce around