Blog Posts

Fayetteville Technical Community College now a National Center of Academic Excellence in Cyber Defense Two-Year Education

The announcement coming in form of official mail from the National Security Agency (NSA) and the Department of Homeland Security (DHS) designates Fayetteville Technical Community College (FTCC ) a National Center of Academic Excellence in Cyber Defense Two-Year Education through academic year 2023.

According to the letter:

“[Fayetteville Technical Community College’s] ability to meet the increasing demands of the program criteria will serve the nation well in contributing to the protection of the National Information Infrastructure. The President’s National Strategy to Secure Cyberspace,14 February 2003 and the International Strategy for Cyberspace, May 2011, addresses the critical shortage of professionals with these skills and highlights the importance of higher education as a solution to defending America’s cyberspace. Like all nations, the United States has a compelling interest in defending its vital national assets, as well as our core principles and values, and we are committed to defending against those who would attempt to impede our ability to do so. Education is the key to promoting these ideals.

FTCC has excelled in supplying today’s workforce with graduates prepared to tackle an ever-changing battle, securing information as it travels by 1’s and 0’s.

In recent years, FTCC has become a power-house for those looking to enter the cyber security realm. From opening the Cyber Defense Education Center to partnering with the Fayetteville / Fort Bragg ISSA chapter, FTCC is dedicated and driven to academic and professional excellence in cyber security.

The Fayetteville / Fort Bragg ISSA extends a congratulations and a job well done to those at FTCC who made this achievement happen. Noteworthy are the incredible students and board-members of the student ISSA on campus who go above and beyond the classroom to make an impact on the cyber community.

Certificates will be presented during a designation ceremony in June of 2018 at the National Cyber Summit to be held in Huntsville, Alabama.

March Meeting

FIRST

At 5:00 PM all were invited to come out to Fayetteville Tech Community College to enjoy Subway catering and network with other professionals. During that time, all were directed to sign in at the front desk and receive their name badge.

SECOND

From 6:00 PM – 7:00 PM our very own chapter Secretary , Nia Luckey, led us in a discussion, entitled Compliance Toolbox. Topics included:

  • RISK MANAGEMENT FRAMEWORK (RMF)
    • The RMF process:
      1. Categorize
      2. Select
      3. Implement
      4. Assess
      5. Authorize
      6. Monitor
  • SECURITY TECHNICAL IMPLEMENTATION GUIDES (STIGs)
    • How to leverage the IASE website to view information on all 436 current STIGs
    • The STIG process including:
      1. Discover
      2. Assess
      3. Analyze
      4. Remediate
      5. Mitigate
  • ASSURED COMPLIANCE ASSESSMENT SOLUTION (ACAS)
  • SECURITY CONTENT AUTOMATION PROTOCOL (SCAP)
    • Automation for the STIG procedures
  • ENTERPRISE MISSION ASSURANCE SUPPORT SERVICES (eMASS)
    • All things Compliance documenting

LAST

Our senior cyber professionals led us in small group discussions covering:

  • The latest trends in the cyber realm
  • The “rebirth” of the WannaCry virus at Boeing (Check out the article)
  • Microsoft’s anti-patch – The patch that actually makes your system less secure (Check out the article)
  • Upcoming conferences and events.
  • Real world experience from leaders from U.S Army Forces Command, Cisco, AT&T Consulting, and many more!

In closing, the term “Compliance” can be a daunting word. Pictures of mountains of paperwork, late night check the boxes, and redundant processes may rush to your head when you hear someone talk about it. However, Compliance is one of the most important issues that needs to be addressed in any company. Having a solid framework, toolset, and expertise when it comes to compliance in the workplace has never been so in-demand as it is today.

Check out the slide deck from the class here-Compliance-1 (1) (1)

 

I am convinced that there are only two types of companies: those that have been hacked and those that will be. – Robert Mueller

 

This slideshow requires JavaScript.

 

February Meeting

First

At 5:00 PM all were invited to come out to Fayeteville Tech Community College to enjoy Brooklyn’s Pizza and network with other professionals. During that time, all were directed to sign in at the front desk and receive their name badge.

Second

From 6:00PM – 7:00PM our local chapter President, Mr. Matthew Young, led us in a discussion, entitled Compliance First, focusing on the Risk Management Framework (RMF) process. Topics included:

  • (A couple of) Compliance Tools used in RMF: SCAP, STIG, NIST 800-53
  • A review of the Risk Management Framework (RMF) Process *as seen by Mr. Young*:
    • Plan – Whats the system used for? Is it public facing? Which framework will we use?
    • Categorize – Confidentiality, Integrity, Availability ( CIA triad)
    • Build – Apply framework, network/perimeter defense, applications, services
    • Harden – Establish baselines, monitor, maintain
  • Some examples of assessing controls and the paperwork involved.

…A complete description of the RMF process can be found here or here.

Last

Our senior cyber professionals led us in a round table discussion on:

  • How to get into the Cyber realm?
  • What certifications are all about and the best ones to pursue.
  •  Upcoming conferences and events.
  • Real world experience from leaders from U.S Army Forces Command, Cisco, AT&T Consulting, and many more!

In closing, the ISSA Fayetteville / Fort Bragg decided that this meeting was going to be about helping. Whether you were a student in attendance all the way up to seasoned cyber professional, guidance was offered to all. Road-maps to success were created, resumes were reviewed, and business cards were exchanged. If you missed it, that’s ok! Click here to register for the next Chapter meeting in March and stay tuned to this page for more information and all of the details concerning the ISSA Fayetteville / Fort Bragg. While you’re at it, follow us on Facebook, LinkedIn, and Twitter so you don’t miss out on anything! Hope to see you at the next one!

 

Compliance reduces attack surface which limits attack vectors. – Matthew Young

Sponsor of ISSA meeting in Fayetteville NC

January Meeting

This slideshow requires JavaScript.

January’s ISSA Fayetteville / Fort Bragg Chapter meeting was a success! Special thank to  Fayetteville Technical Community College, TEKsystems, and Endgame for sponsoring the event.

First, attendees were encouraged to grab a plate of food (provided by the sponsors mentioned above) and network among fellow members, newcomers, cyber professionals, and cyber newbies. Recruiters from TEKsystems introduced themselves and all were welcome to chat with them about new job opportunities.

Second, Anthony Pierce and William Ogle lead us in a discussion entitled “Compliance versus Security, Two sides of the same coin”. Topics included NIST 800-53, Talos Intelligence, Cyber Kill Chain, and a look into what is takes to track down authors of malware.

To wrap the night up, Endgame brought their presentation and a demo of what they have to bring to the table for IT Operations, SOC, and Hunt teams. Click here to learn more!

November ISSA Meeting Flyer

30 November Meeting ISSA Fayetteville Fort Bragg

ISSA 30NovSlide

We know many of you have been patiently waiting for the details of this month’s meeting. We will be meeting at Fayetteville Technical Community College (FTCC) with Varonis sponsoring and CISCO presenting. Veteran IT employment assistance team VETS will also be there, so bring those resumes! All details are in the flyer above, can’t wait to see you there!

%d bloggers like this: