Participation in the Forum, including events and online exchanges, is open to federal C-SCRM program managers or other federal personnel who have a dedicated and recurring responsibility for performing one or more C-SCRM functions. Federal contractors who provide direct C-SCRM programmatic support may also participate upon request by their federal sponsor and approval by the Forum co-hosts.
The Forum may establish working groups or study groups and welcomes all suggestions to the co-hosts.
NIST is hosting the Forum as part of its mandate under the SECURE Technology Act and the Federal Information Security Modernization Act. Jon Boyens and Angela Smith of NIST serve as co-hosts; administrative and logistical support is provided by NIST.
Federal C-SCRM Forum Meetings
Please see the CSRC Events Page for upcoming Forum meetings and registration information. Staff who support information security programs at U.S. federal, state, and local government levels are welcome to attend.
Contractors who support U.S. federal, state, and local government employees are also invited to attend Forum meetings. For contractors who do not have a valid .gov or .mil email address, their federal sponsor can send an email to email@example.com asking that the contractor attend the Forum meeting.
Contractors cannot sponsor other contractors to attend Forum events or join the email listserv.
Federal C-SCRM Forum Email Listserv
To join the Forum Email Listserv, subscribe at: https://list.nist.gov/federal_CSCRM.
Participation in the Forum listserv is limited to U.S. federal, state, and local government employees who participate in the management of their organization’s information security program and have a .gov or .mil email address. Designated support contractors may also join the Forum listserv using a .gov or .mil email address. Requests from personal email addresses will not be approved.
To get a Google account affiliated with your .gov or .mil email, please see: https://accounts.google.com/SignUpWithoutGmail
If your organization's firewall does not allow you to join via the above methods, email Federal_CSCRMfirstname.lastname@example.org. A moderator will approve your membership to the Forum.
Procedural Instructions for Use of Federal C-SCRM Forum Email List:
Security and Privacy: controls assessment, cybersecurity supply chain risk management, information sharing, malware, risk assessment, security controls, security measurement, security programs & operations, systems security engineering, vulnerability management
Laws and Regulations: Comprehensive National Cybersecurity Initiative, Cybersecurity Enhancement Act, Cybersecurity Strategy and Implementation Plan, Cyberspace Policy Review, Executive Order 13636, Federal Acquisition Regulation, Federal Information Security Modernization Act, Homeland Security Presidential Directive 12, OMB Circular A-130