Featured Bloggers ANDREW BLUMENTHAL Chief Technology Officer ATF E-Memory and Meat Memory Profile | Blog JEREMY CARLSON Is the iPhone Ready for Business Primetime? Profile | Blog GTRA Council Meeting GTRA Council Meeting Dec 6-8, 2009 Featured Speakers ROBERT LENTZ Chief Information Assurance Officer, Office of the Assistant Secretary of Defense, Networks and Information Integration/Chief Information Officer DEFENSE DR. PAUL A. TIBBITS, MD Deputy Chief Information Officer, Office of Enterprise Development VETERANS AFFAIRS KEN GRIFFEY Chief Information Officer, Stennis Space Center NASA CHRISTOPHER GARCIA Director, Cyber Security and Incident Response Center FAA IRA GROSSMAN Chief Enterprise Architect FEMA RENE SMERAGLIA Chief Information Security Officer US MINT WALT OKON Senior Architect Engineer, Enterprise Architecture & Standards DEFENSE DR. SUZANNE ACAR Senior Federal Data Architect DR. RON ROSS Senior Computer Scientist NIST DAVID STENDER Chief Information Security Officer IRS TIM SCHMIDT Chief Technology Officer TRANSPORTATION DAVID ZEPPIERI Chief Information Officer OVERSEAS PRIVATE INVESTMENT CORPORATION (OPIC) DR. PETER ALTERMAN Senior Advisor for Strategic Initiatives NATIONAL INSTITUTES OF HEALTH PETER MELL Cloud Computing Project Lead, Senior Computer Scientist NIST GTRA Council Meeting Solution Providers GTRA Partners Connect with GTRA GTRA Programs Featured News OMB Unveils Automated FISMA Reporting System Substance of reports is virtually the same, but agencies will now deliver it via automated tools and online reporting 5 Pitfalls to Avoid with Performance Management Dashboards With virtually every agency scrambling to create dashboards to meet Obama's Transparency mandates, here are some lesson's learned with regard to potential hurdles Better Procurement Can Feed Transition to 21st-Century Federal IT, Kundra Says Interview with Federal CIO focuses on EA Lines of Business, Infrastructure, Federal/Contractor relationships and Procurement reform When Visualizing Data, Beware of Gratuitous Rendering Simply putting data in visual form doesn't guarantee greater clarity or value, the right type of data has to be visualized using the right tools to truly make a difference DoD Updates IPv6 Standards Profile The profile provides a technical and standards based definition of interoperability requirements for IPv6-capable products to be used in DOD networks DHS, Industry Assess Risks to IT Sector Report issued in an effort to increase protection of IT assests considered part of our nation's critical infrastructure DOD Moving To Adopt Limited Social Networking Navy CIO Robert Carey said Social Networking tools will be allowed on the private military network with no access to outside users Research and Publications Webcast: Mission Critical - Learn How Your Agency Can Adapt to Meet the Changing Needs of Gov't Your agency, like other government agencies across the country, needs to keep up with the demands of your internal and external users. White Paper:  Business Infrastructure Software in Action - Leveraging SOA for Agile Business Processes Enterprises around the world are facing a momentous transformation, as they move away from traditional, inflexible approaches to leveraging information technology (IT) resources to a more agile way that helps to improve business process. Press Release:  Telework Exchange Fall Town Hall Meeting Join fellow government and industry executives for the Fall 2009 Town Hall Meeting on September 24, 2009 in Washington D.C. White Paper:  The Right Technology for the Right Times When software emerged in the 1960s and '70s, companies deployed masses of programmers using C, COBOL, and other specialized programming languages to build customized applications. White Paper: The Pay-off of Business Infrastructure Software Want to multiply the value of your IT investments to achieve increased ROI, process improvement and business innovation? With the right tools and methodologies, you can. White Paper:  Accelerate Your Business Enterprise Transformation How do you respond to growing pressure to improve efficiency, facilitate real-time information sharing, and transform your agency operations? Announcement:  Register Today for the 2009 NIEM National Training Event The 2009 NIEM National Training Event promises to be the definitive training event on NIEM and information sharing and is expected to draw more than 600 IT professionals from around the United States. Press Release: The View from the Top: An Established Telework Program "The View from the Top: An Established Telework Program" is a complimentary Webcast that will focus on a recognized, enterprise telework program. Press Release: Telework In a Box Event Series - San Francisco, CA Join fellow government agency and industry professionals as they discuss telework best practices and lessons learned. Through extensive research, GTRA Council Members and other IT Leaders have identified the following areas as critical to the success of their agency, which include Cloud Computing, Enterprise Architecture, Cyber Security, Web 2.0, and Leadership.  Based on these key areas, we are excited to announce the preliminary curriculum for the next ArchitectureGOV!   Over the course of three days, cutting-edge curriculum is delivered by government and industry leaders through a dynamic blend of presentations, panels, live-demonstrations, roundtable discussions, and boardroom meetings designed to be highly interactive and facilitate information exchange at the executive level. Complimenting the curriculum, a heavy focus on networking functions is designed to foster and solidify peer relationships through collaborative banquets, networking events, cocktail receptions and entertainment. GOVERNMENT CLICK HERE TO PRE-REGISTER   RSVP TODAY FOR EARLY DISCOUNT RATE: Pre-Register by Oct. 16th, Pay Only $599!   Government Tuition Includes*: Access to All Sessions Earn FEAC & GTRA CEUs Access to Presentations Post-Event Customized Itinerary Agenda Networking, Receptions, Entertainment Special Workshops Recorded Broadcast Sessions Collaborate Prior To and After the Event With Speakers! *Meals and lodging available at the GSA-approved per-diem rates, payable directly to hotel upon checkout   New DefenseGOV Program!  Promoting Civilian, Defense and Intelligence Agency Collaboration  As meeting our country's National Security objective can only be achieved through true government-wide collaboration between Civilian, Defense and Intelligence agencies, GTRA is excited to announce the addition of a DefenseGOV program to the December 2009 GTRA Council Meeting, focusing on addressing the needs and concerns facing IT executives responsible for National Security in a Digital Age. Key topics include: Net-Centricity Cyber-Terrorism Information Sharing Identity Management Risk Management Infrastructure Modernization Geospatial Social Networking / Web 2.0 Service Oriented Architecture Call for Participation:  OMG/GTRA Sustainability Initiative OMG and GTRA have been working with several other organizations to develop a  technology and domain agnostic Sustainability Assessment Model (SAM). SAM will provide an advanced vocabulary, and a data model to help organizations define, assess, monitor and report on their green and sustainability initiatives. Click Here to View SAM Call to Participation If you would like to get involved with this effort please contact Parham Eftekhari at parhame@gtra.org. Leadership & Change: Best Practices April 5-9, 2010 Management: Driving Performance June 18-23, 2010 Strategic Management  June 13-18, 2010 Turnaround Management Strategies  June 2010 Performance Measurement For Effective Management  June 1-4, 2010 Global Energy Seminar December 6-9, 2009 Please contact Kelly Yocum at 415.596.5000 or kellyy@gtra.org for additional information! CALL FOR SPEAKERS & COUNCIL MEMBERS! GTRA is conducting curriculum development research for the GTRA Council Meeting December 6-8 www.GTRACouncilMeeting.org We encourage our members to participate in creating this program. Please submit papers or speaker recommendations for federal CXOs and other IT leaders to join the program and GTRA Council!    Parham Eftekhari Director of Research 773.517.8534 (mobile) parhame@gtra.org DATE:  October 8, 2009, 9:00am LOCATION: 1701 Pennsylvania Ave NW Ste 300, Washington DC 20006 COST:  FREE for GTRA Members ($99 for Non-Members) INCLUDES:  Access to Live Demonstrations and Sessions, Breakfast Reception, Post-Event Access to Content, Discussions, and Resources via GTRA Members Portal CLICK HERE TO RSVP Spear Phishing: Can Your Workforce Dodge the Hook?   Rohyt Belani President & CEO PhishMe.com A recent research report (by iDefense labs) indicated that over 15,000 employees have fallen prey to spear phishing attacks over the last 15 months. This is attributable to the increased sophistication of these types of attacks, lack of employee awareness, and the failure of reactive technologies in addressing the threat. In this session, we will provide perspective on the problem by discussing the anatomy of a real phishing attack that we responded to; one that almost brought down critical infrastructure used for power generation. Following the case study, we will demonstrate PhishMe.com, a Software-as-a-Service solution designed to help prevent damage, theft and loss caused by targeted phishing attacks through innovative employee training. PhishMe facilitates and automates the execution of mock phishing exercises (that emulate real spear phishing attacks) against your workforce, provides clear and accurate reporting on user behavior, and most importantly provides instant, targeted employee training to those found susceptible.   This method of training employees is recommended by SANS, proven to be most effective by researchers at Carnegie Mellon University, been used effectively at the US Military Academy - West Point, and can be easily implemented in your organization.

Jim Butterworth Senior Director of Cyber Security Guidance Software

There is great value in unambiguous detection of specific
files, yet there are many situations where you would like to find files that
are similar to the files in a set, but not identical. For instance:

• Document versions: Documents that
  have been changed slightly will have a completely different hash value. If you
  have a copy of a document, simply opening the document and saving it again,
  without making any changes to the text, is usually enough to change the hash
  value of the document, due to the changing values of the embedded meta-data.

• Polymorphic malware: The executable "mutates" itself slightly as it spreads throughout the
  network, in order to defeat hash-based detection schemes.  Every copy of
  the file on the network has a different hash value, making detection and
  cataloging difficult.
• Different builds of executables: Executables that have the same source code, but are compiled with
  different settings, or with a different version number, will have distinct hash
  values.
• Email Threads:  Email software often concatenates "quoting" sequences to an email
  body when you reply or forward the email. Although the text is "essentially
  the same" those characters will change the hash of the text, making it
  tough to identify in an automated fashion.

Although there are many uses for the classic hash value,
there are many situations where its "all or nothing" character makes
it unsuitable.  In this session, Jim Butterworth, Sr. Director of Cyber
Security with Guidance Software will show how/why the use of Entropy processing
technology can be used in the above use cases. 

Dr. Suzanne Acar, Senior Federal Data Architect (Speaker & Enterprise Architecture Council) 

Deedee Akeo, Chief Architect, Business Transformation Agency (Enterprise Architecture Council) 

Lynn Allen, Deputy Chief Information Officer for Business and Technology Modernization, HUD (Security Council) 

Dr. Peter Alterman, Senior Advisor for Strategic Initiatives, National Institutes of Health (Speaker & Security Council)

Gregg "Skip" Bailey, Former Chief Information Officer, ATF, Justice (Enterprise Architecture Council)

Frank Bauer, Vice President for Government Training and Professional Development, Graduate School, USDA (HR Council)

Dr. Scott Bernard, Deputy Chief Information Officer, Federal Railroad Administration, Transportation (Enterprise Architecture Council)

Andrew Blumenthal, Chief Technology Officer, ATF, Justice (Enterprise Architecture Council)

Dr. W. Stan Boddie, PMP, CISSP, Professor of Systems Management, Information Resource Management College, NDU (HR Council)

Dr. Barry Brown, Deputy Director, Enterprise Systems Engineer, Customs and Border Protection, DHS (Enterprise Architecture Council)

Richard "Dick" Burk, Chair, Health IT Committee, GTRA (Health IT Council)

Jonathan Cantor, Executive Director, Office of Privacy & Disclosure, Office of the General Counsel, SSA (Security Council)
Michael Castagna, Chief Information Security Officer, Commerce (Security Council)

Marian Cody, Chief Information Security Officer, HUD (Security Council)

Colleen Coggins, Chief Knowledge Officer, Interior (Enterprise Architecture Council)

Doreen Cox, Chief Architect, Customs & Border Protection Department, DHS (Enterprise Architecture Council)
Elisa Cruz, Chief Information Security Officer, FEMA (Security Council)
Linda Cureton, Chief Information Officer, NASA (Enterprise Architecture Council)
Kevin Deeley, Chief Information Security Officer, Justice (Security Council)

Brian Doerk, Senior Enterprise Architect, PMP, Treasury (Enterprise Architecture Council)

Steve Elky, Chief Information Security Officer, Library of Congress (Security Council)

Norman Enger, Former Director,Human Resources Line of Business Program Management Office, OPM (HR Council)
Rich Ferguson, Chief Information Officer, Federal Labor Relations Authority (GTRA Council)
Frederic Foley, Chief Architect and Director of Enterprise Architecture, US Coast Guard (Enterprise Architecture Council)
Ylanda Ford, Director, Enterprise Architecture, OCIO, HUD (Enterprise Architecture Council)

Christopher Fornecker, Chief Technology Officer, Integrated Acquisition Environment, GSA (Enterprise Architecture Council)

Sharon Fratta-Hill, Ph.D., VP of Academic Programs and Continuing Education, Graduate School, USDA (Enterprise Architecture Council)

Christopher Garcia, Director, Cyber Security and Incident Response Center, FAA (Speaker & Security Council)
Ned Goldberg, Chief Information Security Officer, FDIC (Security Council)

Ken Griffey, Chief Information Officer, Stennis Space Center, NASA (Speaker & Enterprise Architecture Council)
Ira Grossman, Chief Enterprise Architect, Federal Emergency Management Agency (Speaker & Enterprise Architecture Council)

Chris Hardy, Director, e-Learning and Technology Center, DAU (HR Council)

Brad Harshman, Chief Enterprise Architect, National Nuclear Security Administration, Energy (Enterprise Architecture Council)

Kenneth Heitkamp, Assistant Chief Information Officer for LifeCycle Management, Air Force (Security Council)

Dennis Heretick, Former Chief Information Security Officer, Justice (Security Council)

Randolph C. Hite, Director, IT Architecture & Systems Issues, GAO (Enterprise Architecture Council)

Patrick Howard, Chief Information Security Officer, NRC (Security Council) 

Marlene Howze, Chief Architect/Enterprise Architecture Program Manager, Labor (Enterprise Architecture Council)

Jack Israel, Federal Chief Technology Officer (Security Council)
James Johnson, Chief Information Officer, Congressional Budget Office (Enterprise Architecture Council)
Richard Klemmer, Chief Enterprise Architect, NTIA, Commerce (Enterprise Architecture Council)

Mischel Kwon, Director, US-CERT, DHS (Security Council)

Mary Lacey, Deputy Program Director, AEGIS Ballistic Missile Defense, Missile Defense Agency (Security Council)
Kevin Lawson, Branch Chief, Applications Development Branch, TSA (Enterprise Architecture Council)

Robert Lentz, Chief Information Assurance Officer, Office of the Assistant Secretary of Defense, Networks and Information Integration / Chief Information Officer, Defense (Speaker & Security Council)
Phillip Loranger, Deputy Chief Information Security Officer, Education (Security Council)

Jay Mahanand, Deputy Chief Information Officer / Chief Technology Officer, US Mint (Enterprise Architecture Council)
Randy Maples, CEA, Deputy Chief Information Officer - Management, FTC (Enterprise Architecture Council)
Ethel Matthews, Senior Advisor to Chief Information Officer, Security and Privacy, SBA (Security Council)
Mary McCaffery, Senior Advisor, Assistant Administrator, EPA (Enterprise Architecture Council)

Michael McFarren, Senior Principal, Information Systems Engineer, MITRE (Speaker & Enterprise Architecture Council)

Debra McKeldin, Chief Enterprise Architect, Centers for Medicare and Medicaid Services, HHS (Enterprise Architecture Council)

John McManus, Former Deputy Chief Information Officer and Chief Technology Officer, Commerce (Enterprise Architecture Council)
Margaret Mech, Chief Information Security Officer, FTC (Security Council)

Peter Mell, Cloud Computing Project Lead, Senior Computer Scientist, NIST (Speaker)
Matt Newman, Professor of Systems Management, NDU (Enterprise Architecture Council)

Jillian O'Connell, Chief, Enterprise Investment and Information Management, US Geological Survey (Enterprise Architecture Council)

Walt Okon, Senior Enterprise Architect, DoD Enterprise Architecture & Standards Directorate, Defense (Speaker & Enterprise Architecture Council)

Bajinder Paul, Chief Information Officer of the Office of the Comptroller of the Currency, Treasury (Enterprise Architecture Council)

Richard Prentiss, Chief Information Security Officer, Office of Thrift Supervision, Treasury (Security Council)

Ken Rogers, Director of Enterprise Architecture and Strategic Planning, State (Enterprise Architecture Council)
Joe Rose, Chief Architect, Education (Enterprise Architecture Council)
Dr. Ron Ross, Senior Computer Scientist, NIST (Speaker)
Larry Ruffin, Chief Information Security Officer, Interior (Security Council)

Timothy Ruland, Chief Information Security Officer, Census Bureau (Security Council)

Peter Sand, Director of Privacy Technology, DHS (Security Council)

Dr. Ronald Sanders, Associate Director of National Intelligence for Human Capital, Chief Human Capital Officer, DNI (HR Council)

Daniel Sands, Chief Information Security Officer, Director, Information Security and Awareness Office, OCIO, National Institutes of Health, HHS (Security Council)
Marco Santini, Deputy Director, Customer Accounts & Research, GSA (HR Council)

Daud Santosa, Chief Technology Officer, National Business Center, Interior (Enterprise Architecture Council)

Derek Scarbrough, Chief Information Officer, Institute of Museum and Library Services (GTRA Council Member)
Michael Schievelbein, Project Manager & Solutions Architect, Solutions Coordination Office, National Business Center, Interior (Enterprise Architecture Council)
Tim Schmidt, Chief Technology Officer, Transportation (Speaker & Mobile/Wireless Council)
Frederick Schobert, Chief Technology Officer, Federal Acquisition Office's Integrated Technology Services, GSA (Enterprise Architecture Council)
Joe Seger, Deputy Chief Information Security Officer, Interior (Security Council)
Donna K. Seymour, Deputy Assistant for Administration for the Under Secretary of the Navy, Navy (Enterprise Architecture Council)
René E. Smeraglia, Chief Information Security Officer, US Mint, Treasury (Speaker & Security Council)
David Stender,
Associate CIO for Cybersecurity, Chief Information Security Officer, IRS (Speaker & Security Council)
John Sullivan, Chief Architect and Associate Director, EPA (Enterprise Architecture Council)
Peter Sullivan, Director, Office of the Chief Information Officer, Labor (Enterprise Architecture Council)
Eric Sweden, Chief Enterprise Architect, NASCIO (Enterprise Architecture Council)
Harry Tabak, Enterprise Architect, National Weather Service (Enterprise Architecture Council)
George Thomas, Chief Enterprise Architect, GSA (Enterprise Architecture Council)
Dr. Paul A. Tibbits, MD, Deputy Chief Information Officer, Office of Enterprise Development, Veterans Affairs (Speaker & GTRA Council)
James Trinka, Director, Training and Technical Development, FAA (HR Council)
Arleas Upton-Kea, Director, Division of Administration, FDIC (HR Council)
Tan Van Luong, Chief Enterprise Architect, US Mint, Treasury (Enterprise Architecture Council)
Brian Wilczynski, Director, Enterprise Architecture & Standards, Defense (Enterprise Architecture Council)
Dennis Wisnosky, Chief Architect, Chief Technical Officer, Business Mission Area, Defense (Enterprise Architecture Council)
Paul Wormeli, Executive Director, Integrated Justice Information Systems Institute (Enterprise Architecture Council)
Col. Douglas Wreath, Director, Net Centric Operations
Division, Joint Planning and Development Office (JPDO) (Enterprise Architecture Council)
Dr. Robert "Rocky" Young, Associate Professor of Systems Management, NDU (Enterprise Architecture Council)
David Zeppieri, Chief Information Officer, Overseas Private Investment Corporation (Speaker & Enterprise Architecture Council)

Become a GTRA Member

Offer Expires:  October 16, 2009