At the center of the cybersecurity conversation.

The National Cybersecurity Training and Education (NCyTE) Center and the Centers of Academic Excellence (CAE) in Cybersecurity Community are hosting the seventh annual National Cybersecurity Virtual Career Fair (VCF). As the CAE in Cybersecurity program continues to designate new CAEs, the number of students participating in the VCF grows each year. Last year, over 1100 students and alumni participated in the virtual career fair. Employers from industry, government, and academia will be present seeking top cyber talent from over 400 institutions designated as Centers of Academic Excellence in Research (CAE-R), Cyber Defense (CAE-CD), and Cyber Operations (CAE-CO), and institutions in the Candidate’s Program (pending approval).

This event is open to students and alumni from institutions designated as Centers of Academic Excellence in Cybersecurity.
https://www.caecommunity.org/events/save-date-national-cybersecurity-virtual-career-fair-2023

(ISC)², the world’s leading cybersecurity professional organization known for the CISSP® is offering free Certified in Cybersecurity℠ (CC) online self-paced training and exams as part of its One Million Certified in Cybersecurity initiative.

How the Program Works
To participate in the One Million Certified in Cybersecurity initiative, individuals must visit www.isc2.org/candidate to enroll as an (ISC)² Candidate. Upon completion of that process, which includes an online form and affirmation to abide by the (ISC)² Code of Ethics, individuals will be able to access their free education and exam via their (ISC)² Candidates benefits page.

Participants will receive a free exam, as well as access to the (ISC)² Certified in Cybersecurity online self-paced education course. The course provides a review of the subject matter published in the (ISC)² Certified in Cybersecurity exam outline, which shares the security concepts on which certification candidates will be evaluated.

Go to Certified in Cybersecurity to learn more.

On behalf of Sinclair Community College and the SANS Institute, we are excited to announce our collaboration with the National Science Foundation (NSF) on the groundbreaking JumpStart into Cyber Summer program. This innovative cybersecurity initiative has been designed to engage and empower underrepresented student groups, creating a path for them to excel in the cybersecurity industry.

This program is meticulously designed to cater to diverse student communities, including women, Black, African American, Latino(a), Hispanic, and Indigenous students. We place particular emphasis on students from Historically Black Colleges and Universities (HBCUs) and Predominantly Black Institutions (PBIs), aligning with our shared commitment to attract, retain, and graduate students from diverse backgrounds in advanced cybersecurity degree programs.

The program kicks off with CyberStart, an online gamified learning platform aimed at inspiring and teaching the fundamentals of cybersecurity. High-performing students will then progress to the prestigious SEC275: Foundations training course, a program akin to those undertaken by industry and government cyber professionals. Upon completion, students will be prepared to pursue the highly regarded GIAC Foundational Cybersecurity Technologies (GFACT) certification, a well-respected credential in the cybersecurity industry.

As Monisha Bush, SANS Mission Programs and Partnerships Coordinator and a member of the SANS DEIB Task Force, shared, “By providing an engaging and accessible platform, we hope to inspire a new generation of diverse cybersecurity professionals, with a special emphasis on uplifting communities with limited representation.”
We are grateful for the funding provided by NSF for JumpStart into Cyber, which reinforces our shared dedication to promoting job accessibility, small business growth, and economic security for diverse communities. We eagerly anticipate the transformative impact this initiative will make in bridging the equity gap in the cybersecurity industry.

The application window for the JumpStart into Cyber program opens on Friday, May 12th at 9:00am EST and closes on Sunday, June 4th at 11:59pm EST. We invite all eligible students to seize this unique opportunity.

For more information and to apply, please visit: https://sinclairwfd.regfox.com/cyberstart beginning Friday, May 12th.

Please direct any questions to brittany.craig1@sinclair.edu

At the conclusion of this talk the attendee will be able to:

Location: https://captechu.zoom.us/j/664120328

Just log in as “Guest” and enter your name. No password required.

Today, cybersecurity is, or at least should be, at the forefront of almost every industry’s strategy. Leaving them in constant search of talent to protect the confidentiality, integrity, and availability of their valuable assets. Fortunately, there are many aspiring protectors willing to answer the call. However, finding an academic or training program that replicates the experiences found in a production environment is either hard to find or too expensive to pursue. The Academic Security Operations Center (ASOC) envisioned at Augusta Technical College intends to remediate this issue by providing an environment where future protectors can step beyond the theory and guided lab instructions prevalent in most academic courses. With this advanced learning environment, these protectors will be afforded an opportunity to apply lessons learned and better prepare for a world seeking their much-needed skills and knowledge.

Location: https://captechu.zoom.us/j/664120328

Just log in as “Guest” and enter your name. No password required.

Register here: US Cyber Open Registration

Zero trust is a new concept in cybersecurity, it provides a strategy and implementation process to have more secure cyberspace. In this talk, I will introduce the concept of zero with some analogy for illustration. Utilizing the principle of “never trust, always verify, continuous monitoring and isolation”, Zero Trust has become important strategy for cybersecurity industry. Different architecture of zero trust, fundamental tenets, and implementation will be discussed. Organizational requirements associated with the zero-trust for information confidentiality, data integrity and availability, authentication, and non-repudiation will also be reviewed including federal guidelines.

Location: https://captechu.zoom.us/j/664120328
Just log in as “Guest” and enter your name. No password required.

Being near range wireless communication technology, Bluetooth Low Energy (BLE) has been widely used in numerous Internet-of-Things (IoT) devices from healthcare, fitness, wearables, to smart homes, because of its extremely lower energy consumption. Unfortunately, the past several years have also witnessed numerous security flaws that have rendered billions of Bluetooth devices vulnerable to attacks. While luckily these flaws have been discovered, there is no reason to believe that current BLE protocols and implementations are free from attacks. Dr. Lin will talk about a line of recent research efforts for BLE security and privacy from his group. In particular, he will discuss the protocol-level downgrade attack, an attack that can force the secure BLE channels into insecure ones to break the data integrity and confidentiality of BLE traffic. Dr. Lin will also introduce Bluetooth Address Tracking (BAT) attack, a new protocol-level attack, which can track randomized Bluetooth MAC addresses by using a novel allowlist-based side channel. Next, he will discuss the lessons learned, root causes of the attack, and its countermeasures. Finally, he will conclude his talk by discussing future directions in Bluetooth security and privacy.

Location: https://captechu.zoom.us/j/664120328
Just log in as “Guest” and enter your name. No password required.

Research has suggested that many users lack awareness of the threats that risky online personal information sharing poses to their personal information. However, even among users who claim to be aware of security threats to their personal information, actual awareness of these security threats is often found to be lacking. Although attempts to raise users’ awareness about the risks of sharing their personal information have become more common, it is still being determined if users are unaware of the risks or are simply unwilling or unable to protect themselves. Research has also shown that users’ habits may also influence their practices. However, user behavior is complex, and the relationship between online habit and practices is not clear.

Location: https://caecommunity.zoom.us/j/83488759886
Just log in as “Guest” and enter your name. No password required.

Historically aviation cybersecurity enjoyed what is called security-by-obscurity due to its niche domain, aviation proprietary systems, and their relative large cost. However, this relative protection is receiving new scrutiny as developments in both aviation and cybersecurity has become common in the recent years. Besides increased availability of cyberattack tools, aviation domain has experienced a growth in connectivity, computing services, and software-driven functionality. There is also increased availability of industry-specific knowledge, such as avionics equipment. Moreover, the aviation enthusiasts’ and cybersecurity communities enjoy the wide availability of software-defined radio equipment. All these developments require a well-trained aviation cybersecurity workforce able to tackle challenges, and protect and defend this critical infrastructure. As leaders in aviation and aerospace education, Embry-Riddle Aeronautical University (ERAU) has undertaken efforts to address the need for a high-skilled cybersecurity workforce. This talk covers the aviation cybersecurity lifecycle models and emphasizes cyber-safety in terms of continuity of systems’ operations across the aviation ecosystem domain. In addition, the talk covers ERAU’s approach to cybersecurity education to build a pipeline of graduates with strong aviation cybersecurity expertise.

Location: https://caecommunity.zoom.us/j/83488759886
Just log in as “Guest” and enter your name. No password required.

Physical side-channel analysis has come a long way since its inception in the 90s. Over the past two decades, a number of attacks and related defenses have appeared, resulting in hundreds of academic papers and a multi-billion dollar market. But what is the future of physical side-channel analysis? Will it keep incrementing on the same themes or are there new directions going forward? In this talk, we will give a brief overview of the existing work and then focus on three aspects we believe to be important for the future of physical side-channel analysis: new applications, new devices/targets, and new means to extract the information.

PACE (Pathway to Advancement in Cybersecurity Education) is a guided Cybersecurity pathway that introduces dual enrollment College courses as early as 9th grade with multiple educational and employment exit points. PACE was funded for the last three years by a grant from the NSF-ATE. We will share our results including outcomes, challenges and best practices. The presentation will be supplemented by interviews and testimonials from various stakeholders (i.e., instructors, students, staff and parents) involved with the PACE project.