HPC Security & Compliance Workshop (PEARC18)

UFRC Director Erik Deumens is organizing an HPC Security and Compliance workshop to take place during the PEARC18 conference.This workshop will seek to provide an overview of the current state for secure high-performance computing on regulated data, in particular CUI (controlled unclassified information):

  • Location: Duquense Room, Wyndham Grand Hotel, Pittsburgh, PA
  • Time: Tuesday, July 2410:30am5pm
  • Event Page (PEARC18 website)
  • Workshop Agenda (PDF)

The conference program can be viewed on the PEARC18 website. The following topics were presented (slides available for download):

Topic Presenter Institution
Assured Compliance through Information Security Continuous Monitoring Trey Breckenridge Mississippi State University
Building a Secure Data Environment Maureen Dougherty University of Southern California
The Role of a System Security Plan (SSP) Ryan Gilmore Pennsylvania State University
Flexible & Scalable Process for Assessing, Validating, Auditing, & Authorizing HPC for Controlled Data Colin Glover Sera-Brynn
Validation of CUI Environments Using NIST 800-171A Joseph Gridley Pennsylvania State University
Intra-Institutional Partnerships for Research Data Security and Compliance Greg Madden Pennsylvania State University
REED: from Service to Ecosystem Preston Smith Purdue University
Creating a Strategy in SSP Preparation Andrew Spragg Pennsylvania State University
Musings on Writing a System Security Plan with Labs Mike Warfe Case Western Reserve University

As a result of the workshop, a Slack community was created to continue the discussion and sharing of information around CUI compliance for institutions of higher education. The community is called HighEdCUI.

A training course on setting up a CUI compliance program at your institution was presented at the NSF CyberSummit 2018: https://trustedci.org/2018-nsf-cybersecurity-summit/

The slides and worksheets can be downloaded from: