Potomac Forum The Forum of Choice for Government & Industry Training Since 1982

The Forum of Choice for Government & Industry Training Since 1982

Executive Breakfast for Government: Converging Logical and Physical Identity Access Management Controls: 21st Century Strategies for Success

Putting the Pieces Together to Be Compliant with A-130, FICAM and CDM

Tuesday, November 15, 2016

Sponsored by Quantum Secure

**Online registration for this event has closed. On-site registration will be available starting 11/15/2016 at 7:30am at the Willard Hotel. This workshop will be in the Crystal room located on the main level.


Government Attendance is Complimentary


Potomac Forum, Ltd. Executive Breakfast for Government Series


November 15, 2016

Willard InterContinental Hotel
Washington, D.C.

Registration and Coffee: 7:30 am to 8:00 am
Seated Breakfast and Program: 8:00 am to 12:00 pm


Government and Industry are Invited to Attend this Public Event,

Ethics Officers have Previously Considered this Event as a "Widely Attended Gathering"

Government Attendance is Complimentary
Industry Registration: $150 Fee

Presented by:


Potomac Forum, Ltd

as part of its continuing series of educational programs for the government


Sponsored by:


Quantum Secure

Quantum Secure



Government, Industry and Academia Are Invited to Attend

iPad Mini Raffle at Conclusion of this Event
Every person who attends this event (open to all) will be offered a raffle ticket upon check-in.

Government ethics offices have previously considered this event as a "Widely attended gathering."
Potomac Forum will be giving away an iPad Mini to one attendee.
The raffle is open to all but you must be present for the random selection of the winner at the end of the event. If organizational policy does not permit acceptance, the iPad Mini will be donated to NIH Children’s Inn.


Keynote Speaker:

Tom McCarty

Director, Identity, Credential and Access Management

Program Management Office (PMO)

U.S. Department of Homeland Security (DHS)


Guest Speakers:

Jim Quinn

Lead System Engineer, Continuous Diagnostics & Mitigation Program

Office of Cybersecurity & Communications

U.S. Department of Homeland Security (DHS)


James Paul Nicholas
Agency Identity Management Official, ICAM


Paul Grassi

Senior Standards and Technology Advisor

National Institute of Standards and Technology (NIST)

Amir Dastouri
ICAM Architect

U.S. Department of Homeland Security (DHS)

Mark Steffler
Vice President Federal Practice
Quantum Secure


Tuesday, November 15, 2016

Meeting Location: 
Willard InterContinental Hotel

Willard Intercontinental Hotel
1401 Pennsylvania Avenue N.W.
Washington 20004
United States

Metro Center (Red, Orange, Blue Lines). Use the exit marked “12th & F Sts” to exit onto F St., then continue straight two blocks and cross 14th St.


This Executive Breakfast will explore how government department and agency CIOs and CISOs can work with CSOs to innovate and integrate logical and physical identity and access systems into a strategic asset to protect information and facilities.  While the office of the CIO has traditionally had a limited role in deploying and securing physical access control systems, increasingly government directives are changing that. OMB M-11-11, the FICAM Roadmap and Guidance, Continuous Diagnostics and Mitigation (CDM) Phase 2 and 3, and most recently, the revision to Circular A-130 has placed urgency on converging both logical and physical access control systems.


OMB is now placing the responsibility for both physical and logical access systems under the domain of the CIO.  The recently revised Circular A-130, states that “Physical Access Control Systems (PACS), which include, for example, servers, data bases, workstations and network appliances in either shared or isolated networks are considered information systems”.  Because of this significant change, we will focus on the strategies and techniques needed to incorporate physical access controls into the logical access paradigm.


This Executive Breakfast is intended to help CIOs, CISO, CSOs, physical security directors, inspector generals and executive management identify and understand the pieces of identify and physical management and how they fit together to comply with the regulations, executive orders, policy and improve the management and protection of federal resources.


What You Will Learn: 

  • How the CIO and the Chief Security Officer for facilities can combine forces to effectively align with FICAM, CDM and the revised A-130 directives
  • Discover tools to demystify FICAM and understand its terminology and use cases
  • Hear from other departments and agencies about how they have integrated physical access controls into FICAM conformant process and their plans for CDM adoption
  • How to plan for CDM Phase II and CDM Phase III adoption
  • Learn about the lesser known ICAM Privileged User Instruction Implementation Guidance, published in October 2014
  • How to adopt new transformative IT initiatives now using innovative funding programs.
  • What Agency senior leadership needs to know about the integration of physical and logical systems to provide secure access to facilities and information systems.
Why You Should Attend: 

  •  OMB A-130, FICAM and CDM places the responsibility for both Physical and Logical Access Systems with the CIO requiring close coordination with physical and facility security management.
  • Identity and Access Management is a business imperative and a basic component of Cyber Security
  • Agencies are being challenged to move legacy physical access controls into the 21st century now to make 100% of PIV cards for authentication and authorization to physical resources.
  • The ramifications of ineffective physical assess controls can put logical systems at risk, possibly defeating million-dollar IT investments already made.
Who Should Attend: 

  • CIOs and Staff
  • CISOs and Staff
  • FICAM Program Management
  • CSOs, Senior Facility Security Directors and Staff
  • Policy and Compliance Officers
  • Inspector Generals and Staff
  • Agency Management Interested in Physical and logical Identity Management and how to Reduce Risks
  • Industry Partners Supporting the Federal Government
  • Academicians interested in Identify Management



  • Presentations by experts
  • Panel discussions led by experienced government and industry experts

7:30AM Registration & Seated Coffee Service

Seated Breakfast is Served
(Attendees are invited to enjoy their seated breakfast during the presentations)

Art Chantker, President, Potomac Forum, Ltd. 


Keynote Presentation:

Modernizing Legacy Systems and Processes and Aligning with FICAM

Tom McCarty, Director, Identity, Credential and Access Management, Program Management Office (PMO), U.S. Department of Homeland Security (DHS)

8:40AM The Identity Ecosystem


Paul Grassi, Senior Standards and Technology Advisor, National Institute of Standards and Technology (NIST) 



What the government needs to know

Jim Quinn, Lead System Engineer, Continuous Diagnostics & Mitigation Program, Office of Cybersecurity & Communications, U.S. Department of Homeland Security (DHS)




Practical Solutions for Achieving Convergence

Mark Steffler, Vice President Federal Practice, Quantum Secure

FICAM Success Story: Converging Logical and Physical Access Controls:  A Very Successful  Enterprise Approach for NASA – World-wide


James Paul Nicholas, Agency Identity Management Official, ICAM, NASA


Panel – User Experiences

The current adaption and implementation of FICAM as a model of the government


James Paul Nicholas, Agency Identity Management Official, ICAM, NASA


Amir Dastouri, ICAM Architect, U.S. Department of Homeland Security (DHS)


Additional panelists to be announced shortly

10:50AM Wrap Up of Executive Breakfast
11:00AM Formal Breakfast Concluded

User Experiences


Mark Steffler, Vice President Federal Practice, Quantum Secure
12:00PM User Experiences Concludes

Agenda Subject to Change

Registration Information: 


Government Employees: No Fee for Government Employees (Federal, State or Local Government Issued ID)


Industry and Contractors: $150 (Including contractors on-site and in direct support of government agencies).


Thanks To Our Sponsor:


Quantum Secure


Quantum Secure



Keynote Speaker: 

Tom McCarty

Director, Identity, Credential and Access Management

Program Management Office (PMO)

U.S. Department of Homeland Security


Director, Identity, Credential and Access Management (ICAM) Program Management Office (PMO), Information Sharing Environment Office, Office of the CIO, Department of Homeland Security


Mr. McCarty is a Senior Level/Senior Technical Program Manager with a focus on performance-centered, collaboration across DHS components and with international, federal, state, local, tribal and private sector partners. Mr. McCarty joined the DHS in 2008 as the Science and Technology Liaison to the DHS OCIO. In 2010, Mr. McCarty initiated the ICAM PMO to coordinate the implementation and portfolio of identity trust fabrics across the DHS classified and unclassified networks.


Mr. McCarty was named a 2015 winner of the prestigious Federal 100 award in recognition for the work he did over the previous year that had significant impact on the shape of federal information technology. In making the announcement of McCarty’s award, Federal Computer Week (FCW) cited his “dynamic leadership of the ICAM office that has accelerated ID management at DHS, with single-sign-on capabilities and strong personal identity verification efforts leading the way. He and his team enabled single sign-on for more than 195,000 users for mission-critical and commonly used business applications, and aggressively moved DHS components to meet PIV card use requirements. McCarty is also known for being generous with his expertise and sharing lessons learned and success stories within DHS and with the wider cybersecurity community across government.”


Under Mr. McCarty’s leadership DHS has made advances in support of the DHS information sharing mission through strong identity authentication, robust access control, enhanced privacy protections and improved user experience. Mr. McCarty has represented the Department at various community wide forums including appearances on Federal News Radio -- once on a panel to discuss Identity Management – Progress and Best Practices.” Most recently in February 2015, he appeared on a Visionary Panel for Mobile Identity Management.


Prior to his career in the Federal Government, Mr. McCarty served as an Associate Vice President and Deputy to the Chief Technology Officer of Science Applications International Corporation.


Mr. McCarty holds a MS in Technology Management from the Johns Hopkins University, Whiting School of Engineering. He has been a panelist at conferences and on radio to speak on the topic of identity management in government.


Guest Speakers: 

Amir Dastouri

ICAM Architect
U.S. Department of Homeland Security (DHS)


Mr. Dastouri is an experienced leader in Cybersecurity with expertise in Identity, Credential, and Access Management (ICAM). Across his career, Mr. Dastouri has led cross functional teams and served all roles on a project team including Agile Project Management, Technical Architect, Engineer, Developer, and Business Analyst, making him a well-rounded and experienced implementer. By combining technical and business skills, Mr. Dastouri has driven acceptance across complex organizations and successfully delivered projects ahead of time and under budget. Further experience includes security architecture, security policies, FISMA metrics and reporting, and internal and external security risk assessments. Mr. Dastouri is currently working on his Masters in Cybersecurity and already has a Master of Business Administration (MBA), Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), and Project Management Professional (PMP) certifications.

Jim Quinn

Lead System Engineer, Continuous Diagnostics & Mitigation Program

Office of Cybersecurity & Communications

U.S. Department of Homeland Security (DHS)


Mr. Quinn currently serves as the Lead System Engineer for the CDM program for Department of Homeland Security, where he is the primary technical point of contact for the $6B CDM BPA and the CDM Dashboard contract.


Prior to this position, he served as Deputy CTO for the NPPD OCIO, after being the Deputy CISO for DHS Enterprise Services (to include both the OneNet and the DHS Data Centers). Much of the work in the Enterprise Service space combined driving cost efficiencies with providing strong security outcomes.


He original came to DHS in 2002 as the Senior Engineer/Architect for the IT Services Organization supporting the DHS Office of the CIO. He had been the key designer of almost all of the major IT services offered by the Department.


Before joining Homeland Security, Mr. Quinn had over thirty years of experience in the network and system development space. He had been the Director of IP development for Alcatel for service provider class routers, the Director of Quality Engineering for Cabletron, Technical Director for multiple groups during his twenty year career at Digital Equipment Corporation.


Before joining Digital, Mr. Quinn was on the faculty of the State University of Albany as the Academic Services lead for research where he incorporated many new technologies into the University Academic programs as well as the development of computer tools and methods in support of research programs being performed on campus. He served in the US Army as an Operations Research/System Analyst working on determining cost effectiveness for future artillery weapon systems.


Mr. Quinn hold a B.Sc. (Honours) in Theoretical Mathematics with a minor in Research Methods from Saint Mary’s University, Halifax, Nova Scotia and has received recognition from: International Who’s Who in Information Technology, Who’s Who in Global Business Leaders, and Who’s Who in America, GISLA (2013) and NextGov Bold (2014).

Mark Steffler

Vice President Federal Practice

Quantum Secure



Mark Steffler has over 20 years experience in computer, network, and electronic physical security. With a BS in Electrical Engineering and Computer Science, Mark worked at AT&T and Exodus Communications in cyber security and more recently at Vidient in electronic physical security and now at Quantum Secure in physical identity and access management.


Mark is the VP of Government Practice for Quantum Secure and leads the company’s initiatives in aligning its flagship product, SAFE, for widespread adoption in the federal government in conformance with FICAM and HSPD-12.  Mark is a member of the Smart Card Alliance (SCA) Access Control Council as well as the Security Industry Association (SIA) Standards Access Control & Identity Subcommittee and regularly participates in open government sponsored forums focused on the evolution of FICAM and FIPS201.

James Paul Nicholas

Agency Identity Management Official, ICAM 



James Nicholas is an Agency Identity Management Official (AIMO) and Identity, Credential and Access Management (ICAM) Program Manager in the Security Management Division of the Office of Protective Services (OPS) at the National Aeronautics and Space Administration (NASA). He is the operational authority for the management of identities at NASA, and management of the Agency ICAM Program, business rules, and system infrastructure related to identity, PIV credentialing, and physical access.  He is also a technical expert on physical security technology and information systems involved in the ICAM Program. Mr. Nicholas is currently the agency’s main point of contact for the NASA Enterprise Physical Access Control System (EPACS).  Before coming into his current role, he served as the Administrator and Information System Security Officer at NASA Headquarters. Systems.


Before making the move to NASA, Mr. Nicholas worked at Ingersoll Rand Security Technologies as an Integration Programmer in the private sector. He has received training and certifications from Microsoft, Cisco, Lenel, Software House, Axis, Open Options, GE, and other technology organizations.

Cancellation Policy: 

Government attendance is complimentary, but we do ask that if you need to cancel to let as know at your earliest convenience so that we can keep our breakfast number accurate.


Industry registrations cancelled after the program starts are subject to the full registration fee. Substitutions can be made at any time. In the event a particular training workshop is cancelled, the liability of Potomac Forum, Ltd is limited to refund of any prepaid registration fee.

  • © 2017-2018 Potomac Forum Ltd. All Rights Reserved
    Copyright also covers all workshop agendas and descriptions
  • 2800 Eisenhower Avenue, Suite 210, Alexandria, Virginia 22314