Security+ Bootcamp
Monday, June 8, 2026
8:00 AM – 5:00 PM
Atlanta Marriott Marquis
$150/NCMS members; $200/non-members
CompTIA’s Security+ certification covers foundational security concepts and practices, including securing systems and networks, detecting threats, and protecting data. This bootcamp is ideal for FSOs seeking to enhance their cybersecurity knowledge and ISSMs/ISSOs pursuing certification as a job requirement.
Given the breadth of topics, the session will focus on high-level material, answering questions, and clarifying critical concepts. Attendees are expected to review course material independently before and after the session.
Participants must purchase "CompTIA Security+ SY0-701 Certification Guide, Third Edition," by Ian Neil. This book includes a 12% discount on the exam.
Note: This class is NOT included in your NCMS seminar registration fee. You must pre-register for this class and pay the additional fee when you register for the seminar.
Already registered for the seminar and want to add this class? Click on registration and add this class to your existing registration or contact NCMS HQ at 610-971-4856 if you need assistance.
CEUs: 8 CEUs
Cybersecurity Course
Cyber Monday - Cybersecurity for ISSM’s, ISSO’s and FSO’s
Monday, June 8, 2026
8:00 am – 5:00 pm
Atlanta Marriott Marquis
$150 NCMS Members; $200 Non-members
This eight-hour training class is intended for ISSM’s, ISSO’s and FSO’s that are interested in the implementation of DAAPM requirements on classified systems. The modules will be taught by DCSA experts and industry cyber professionals who work with classified systems on a daily basis.
Lucy Rodrigues, DCSA, NCSO
Title: eMASS Updates
Description: DCSA/NCSO will discuss upcoming eMASS releases, planned enhancements and details about the eMASS transition from NIST 800-53 Rev 4 to 800-53 Rev 5.
Doug Schubert and Michael Connelly, JHU/APL
Title: What’s in the NIST 800-53 Rev5 Supply Chain Risk Management Domain?
Description: Companies working with the Federal government and DoD/IC communities regularly have supply chain requirements added to their contracts. In many cases, the security and cybersecurity functions of an organization may not be included when those requirements are added. The Supply Chain Risk Management Family in NIST 800-53 Rev5 is new and will be included in upcoming changes to the DCSA DAAG and JSIG as those domains migrate to Rev5 requirements. This briefing will provide an overview of the family and highlight approaches to meet several of its key controls.
Jaime-Marie Nelson, System High Corporation
Title: Classified Asset Sanitization – The Juice is Worth the Squeeze
Description: End of lifecycle classified assets are the most lucrative items our peer adversaries are after. Learn more about how to track, plan, prepare, and sanitize classified assets for their eventual demise.
Lunch
Kevin Newman, Gtegrity, Inc
Title: Vulnerability Scanning: Alternatives for Industry
Description: A discussion of alternatives to high-cost/high-complexity efforts to meet NIST SP 800-53 control RA-5.
Doug Cameron, C-4 Solutions/FSO Source
Title: I Love CUI for the NISP
Description: We are knee deep in CMMC, however many NISP professionals still do not understand how this applies. This is not a CUI sales call or technical discussion of CMMC controls. This is a call to action for NISP Security Staff to understand that they have CUI requirements and must have CMMC solutions.
Justin Sylvester, SecureStrux
Title: Maximizing Nessus & ACAS: Practical Strategies for Effective Vulnerability Scanning
Description: Designed for teams using Nessus or ACAS, this session focuses on real-world scanning best practices to improve coverage, accuracy, and consistency.
Quinton Wilkes and Brian Moore, NOOKS
Title: The Classified Infrastructure as a Service (CIaaS) Journey
Description: The CIaaS model will change how we approach security moving forward. During this block we will discuss why and how Nooks decided to create the CIasS model. We will provide details on the model's operation and its impact on the defense industrial base. Introducing new security processes is always a challenge. We will provide use case scenarios Nooks faced while seeking accreditation for the different classified systems available in the subscription model.
Lucy Rodrigues, DCSA, NCSO
Title: eMASS Updates
Description: DCSA/NCSO will discuss upcoming eMASS releases, planned enhancements and details about the eMASS transition from NIST 800-53 Rev 4 to 800-53 Rev 5.
Doug Schubert and Michael Connelly, JHU/APL
Title: What’s in the NIST 800-53 Rev5 Supply Chain Risk Management Domain?
Description: Companies working with the Federal government and DoD/IC communities regularly have supply chain requirements added to their contracts. In many cases, the security and cybersecurity functions of an organization may not be included when those requirements are added. The Supply Chain Risk Management Family in NIST 800-53 Rev5 is new and will be included in upcoming changes to the DCSA DAAG and JSIG as those domains migrate to Rev5 requirements. This briefing will provide an overview of the family and highlight approaches to meet several of its key controls.
Jaime-Marie Nelson, System High Corporation
Title: Classified Asset Sanitization – The Juice is Worth the Squeeze
Description: End of lifecycle classified assets are the most lucrative items our peer adversaries are after. Learn more about how to track, plan, prepare, and sanitize classified assets for their eventual demise.
Lunch
Kevin Newman, Gtegrity, Inc
Title: Vulnerability Scanning: Alternatives for Industry
Description: A discussion of alternatives to high-cost/high-complexity efforts to meet NIST SP 800-53 control RA-5.
Doug Cameron, C-4 Solutions/FSO Source
Title: I Love CUI for the NISP
Description: We are knee deep in CMMC, however many NISP professionals still do not understand how this applies. This is not a CUI sales call or technical discussion of CMMC controls. This is a call to action for NISP Security Staff to understand that they have CUI requirements and must have CMMC solutions.
Justin Sylvester, SecureStrux
Title: Maximizing Nessus & ACAS: Practical Strategies for Effective Vulnerability Scanning
Description: Designed for teams using Nessus or ACAS, this session focuses on real-world scanning best practices to improve coverage, accuracy, and consistency.
Quinton Wilkes and Brian Moore, NOOKS
Title: The Classified Infrastructure as a Service (CIaaS) Journey
Description: The CIaaS model will change how we approach security moving forward. During this block we will discuss why and how Nooks decided to create the CIasS model. We will provide details on the model's operation and its impact on the defense industrial base. Introducing new security processes is always a challenge. We will provide use case scenarios Nooks faced while seeking accreditation for the different classified systems available in the subscription model.
Note: This class is NOT included in your NCMS seminar registration fee. You must pre-register for this class and pay the additional fee when you register for the seminar.
Already registered for the seminar and want to add this class? Click on registration and add this class to your existing registration or contact NCMS HQ at 610-971-4856 if you need assistance.
CEUs: 8 CEUs
Advancing Industrial Security Practice for FSOs and ISSMs
Monday, June 8, 2026
8:00 am – 4:00 pm
Atlanta Marriott Marquis
$150/NCMS members; $200/non-members
This full-day seminar is designed for Facility Security Officers (FSOs) and Industrial Security/System Security Managers (ISSMs) with two or more years of experience who are ready to elevate their knowledge and strengthen their professional practice. Through expert-led instruction and interactive discussion, participants will deepen their understanding of critical industrial security requirements, expectations, and emerging best practices.
Throughout the course, seasoned security professionals will walk attendees through key sections of the NISPOM, related directives, and other essential government and industry resources. The curriculum emphasizes not just comprehension, but practical application—helping participants connect regulatory requirements to real-world operational scenarios.
Attendees will also benefit from two dynamic panel sessions, featuring experienced FSOs, ISSMs, and industry specialists who will address participant questions, share lessons learned, and provide perspective on current and evolving challenges within industrial security.
By the end of this 8-hour seminar, participants will:
- Strengthen their working knowledge of the NISPOM and associated guidance
- Gain insight into industrial and information system security practices
- Learn practical strategies for improving compliance, risk management, and program effectiveness
- Engage with peers and experts to expand professional networks
- Be better prepared for advanced testing or certification
This course is ideal for security professionals seeking to refine their expertise, enhance their decision-making capabilities, and take the next step in their FSO or ISSM career progression.
Throughout the course, seasoned security professionals will walk attendees through key sections of the NISPOM, related directives, and other essential government and industry resources. The curriculum emphasizes not just comprehension, but practical application—helping participants connect regulatory requirements to real-world operational scenarios.
Attendees will also benefit from two dynamic panel sessions, featuring experienced FSOs, ISSMs, and industry specialists who will address participant questions, share lessons learned, and provide perspective on current and evolving challenges within industrial security.
By the end of this 8-hour seminar, participants will:
- Strengthen their working knowledge of the NISPOM and associated guidance
- Gain insight into industrial and information system security practices
- Learn practical strategies for improving compliance, risk management, and program effectiveness
- Engage with peers and experts to expand professional networks
- Be better prepared for advanced testing or certification
This course is ideal for security professionals seeking to refine their expertise, enhance their decision-making capabilities, and take the next step in their FSO or ISSM career progression.
Note: This class is NOT included in your NCMS seminar registration fee. You must pre-register for this class and pay the additional fee when you register for the seminar.
Already registered for the seminar and want to add this class? Click on registration and add this class to your existing registration or contact NCMS HQ at 610-971-4856 if you need assistance.
CEUs: 8 CEUs
CI Briefing (SOLD OUT)
Monday, June 8, 2026
7:30 AM - 10:30 AM
10:30 AM - 2:00 PM
Lockheed Martin
Complimentary for Attendees
The Counterintelligence Briefing is a complimentary course offered exclusively to attendees of the 62nd Annual Training Seminar. Participants will attend a confidential CI session at an off-site facility. Attendance is limited to 50 individuals for both the morning and afternoon sessions, and registration will be available on a first-come, first-served basis.
Note: NOTE: Attendees MUST be registered for the NCMS Annual Training Seminar to attend this course. Proof of Seminar registration will be required to register.
CEUs: 1 CEU