Skip to main content
U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

2018 Cybersecurity Risk Management Conference - Call for Speakers - Deadline Extension

Registration for the 2018 NIST Cybersecurity Risk Management Conference -- to be held November 7-9, 2018, at the Renaissance Baltimore Harborplace hotel, in Baltimore, Maryland -- is now open and speaker nominations are being accepted. Sponsored by the National Institute of Standards and Technology (NIST), the three-day conference is expected to attract leaders from industry, academia, and government at all levels, including international attendees.

Building on previous NIST workshops, the conference aims to share and explore best practices and receive and discuss stakeholder input on key cybersecurity and privacy risk management topics. The newly expanded conference is a continuation of the annual Cybersecurity Framework Workshops of the past, with addition of the topics and stakeholder groups associated with NIST projects such as Risk Management Framework, Supply Chain Risk Management, and Privacy Engineering.

The conference will be organized around three main tracks in multiple plenary and breakout sessions. Tracks will focus on i) executive risk governance and administration; ii) risk management programs; and iii) operations.

Conference sessions will be based on, or directly related to, a NIST risk management publication or project. NIST welcomes submissions in all topics related to cybersecurity and privacy risk management and is particularly interested in the following topics:

  • Governance and Enterprise Risk Management
  • Supporting Organizational/Business Objectives through Cybersecurity Metrics and Measurement
  • Cyber Supply Chain Risk Management
  • Risk Analytics
  • Cybersecurity Insurance
  • Building Security and Privacy in the System Development Life Cycle (Systems Engineering)
  • Software Assurance and Reliability
  • Cybersecurity and Privacy in Small and Medium-Sized Organizations
  • Confidence Mechanism including, but not limited to, Assessment and Certifications
  • Identity Management
  • Privacy Engineering and Risk Management
  • Customization for Specific Circumstances using Profiles, Baselines, and Overlays
  • Use of NIST Guidance in Regulatory Settings
  • International Alignment Using NIST Guidance
  • Use of NIST guidance in Governmental Settings, including the U.S. Federal Government
  • Referencing Techniques including, but not limited to, Informative References, Crosswalks, and Mappings
  • Cybersecurity and Privacy in Cyber-Physical Systems, Industrial Control Systems, and Internet of Things
  • Topics from and Related to the Roadmap for Improving Critical Infrastructure Cybersecurity
  • Cybersecurity and Privacy in Contractual Relationships or Legal Circumstances
  • Security and Privacy Controls and Outcomes

Speakers are expected to support conference track topics by informing and stimulating discussions among participants. These presentations should advance cybersecurity risk management and the goals of the conference and should not serve a promotional purpose.

Nominations should include: track, session type (e.g. presentation, panel, group discussion, etc.), speaker name(s) including brief biographical information, proposed session title, a 100-150 word description of the presentation, and speaker contact information. The new deadline for nominations is August 7, 2018. NIST will make decisions and notify nominators by August 31, 2018.

Nominations, including supporting information cited above, should be submitted to: cyberframework [at] (cyberframework[at]nist[dot]gov)


Created June 6, 2018, Updated July 10, 2018