Tutorial M

Reducing the Software Risk in Space System Software

Fees

Date

Time

Overview

• Outline:
  • Introduction & Background { Cyber in Space }
  • Software Assurance Background {What, Why, Myths, etc.}
  • Getting on the Same Page with Space Systems {Gaps, Overview, Stds}
  • Defense-in-Depth for Space Systems
  • Supply Chain
  • Requirements, NIST, etc.
  • Approach for Secure and Resilient Software – Focus on the Technical Side of SwA
  • Sample Process for Developing Secure Software
  • Alphabet Soup – SCA, BA, OA, VA, DA, CWE, CVE, CWSS
  • Ground Software Example: FEPs
  • Near Term Goals and What to do Now?
  • Future: Cloud and SecDevOps
  • Summary / Takeaways

Biography

• Graduated Summa Cum Laude with a bachelor’s degree in Electrical Engineering from West Virginia University and currently holds multiple certifications in the cybersecurity field
• Joined Aerospace in June 2019 but he has spent his entire 17-year career supporting the intelligence and civil space arena
• While at NASA Brandon was responsible for building and maintaining a software testing and research laboratory to include a robust cybersecurity range as well as spearheading innovative cybersecurity assessments of ground infrastructure that support NASA’s mission operations
• Brandon’s specialties include vulnerability assessments / penetration testing of ground infrastructure for space systems and infusing secure coding principles within the software supply chain.
• While at NASA he was honored with several group and individual awards to include NASA’s Exceptional Service Medal for his landmark cybersecurity work (2019), NASA’s Early Career Achievement Award (2016) as well as a NASA Agency Honor Awards for Information Assurance/Cybersecurity (2015). Brandon has also contributed to teams who have received honorable mention in the 2012 and 2016 NASA’s Software of the Year competition.

Description of Intended Students and Prerequisites

What can Attendees Expect to Learn