Speakers
Synopsis
Ensuring that integral and complex ICT technologies are secure and fit-for-purpose, at all assurance levels, from conception to decommission is critical to enduring cyber resilience.
Consideration of current and emergent cyber security risk must commence as early a possible in the ICT product development lifecycle, as failure to understand the different types of ICT security issues risks, by designers and developers often leads to security flaws that are either very costly to remediate or expose the owner to additional risk for the life of the product.
Government and industry need to work together to manage ICT security through the whole ICT life cycle by searching for and dealing with design weakness, implementation errors, and manufacturing problems, through combining ICT product (software or hardware) and supply chain analysis.
This presentation will provide participants with an understanding of
- How ICT products evaluations are undertaken
- How we approach the development of new techniques and capabilities that test, assess, evaluate ICT systems, devices, and products; throughout their lifecycle to a high level of assurance to protect information, and the underlying missions they support, at all levels of classification and sensitivities.
