Training – Page 41 – WindowsTechs.com

DHS ‘Cyber Storm’ exercise tests manufacturing and transportation sectors

Posted on April 10, 2018 by Sean Lyngaas

A global cybersecurity drill hosted Tuesday by the Department of Homeland Security served to “push participants out of their comfort zone” to practice information sharing at a time of heightened risk to critical infrastructure, top DHS cybersecurity official Jeanette Manfra said. “Cyber threats to critical infrastructure continue to grow and represent one of the most serious national security challenges we must confront,” Manfra told reporters, adding that participants will respond to a simulated global threat to infrastructure over the course of the three-day exercise. This week’s exercise includes participants from the transportation and “critical manufacturing” sectors, the latter which DHS recently warned Russian government hackers were targeting in a multi-stage attack campaign. Aviation giant Boeing was hit by malware last month in an attack that stirred fears that the potent WannaCry ransomware had struck again. More than 1,000 people, including corporate executives, law enforcement, intelligence, and defense officials, are participating in this […]

The post DHS ‘Cyber Storm’ exercise tests manufacturing and transportation sectors appeared first on Cyberscoop.

Continue reading DHS ‘Cyber Storm’ exercise tests manufacturing and transportation sectors→

Training Gamification, CIA Board Game

Posted on April 4, 2018 by Marc Handelman

Due to FOIA requests…
via Sam Machkovech, writing at the beloved Ars Technica, reports on the general availability of a United States Central Intelligence Agency training object for analyst assets. All due to a FOIA request filed (reportedly) a yea… Continue reading Training Gamification, CIA Board Game→

Electric grid hacking exercise reveals shortfalls of security clearance shortage

Posted on April 2, 2018 by Sean Lyngaas

As foreign hackers continue to probe the U.S. grid for weaknesses, a cyber exercise for the North American energy sector has shown that many utility personnel still lack access to the classified information needed to stay on top of the threat. Not enough utility employees had the clearances needed to share threat information for a serious cyberattack scenario rehearsed during the exercise, according to a report published Friday by regulator North American Electric Reliability Corp. (NERC). “Government should plan to quickly declassify information that utilities need to prevent or respond to attacks,” the report states. During the two-day exercise, which took place in November, government officials and utility executives worked together to respond to simulated “cyber and physical attacks” against control systems and generation and transmission facilities “that caused widespread and prolonged power outages,” the report notes. Energy industry officials have long urged the U.S. government to expedite the clearance […]

The post Electric grid hacking exercise reveals shortfalls of security clearance shortage appeared first on Cyberscoop.

Continue reading Electric grid hacking exercise reveals shortfalls of security clearance shortage→

How to Invest in Your Employees to Strengthen IT Security for Your Business

Posted on April 2, 2018 by Tripwire Guest Authors

As we barrel further into the digital age, IT security carries increasing importance to the operation of your business. IT services now represent both the hub of business operations and the primary line of defense for most companies. Accordingly, it is… Continue reading How to Invest in Your Employees to Strengthen IT Security for Your Business→

CompTIA Stackable Certifications

Posted on March 30, 2018 by Hannah Brandon

You’ve put in the time, proved you have the knowledge and skills, and earned the certification. Maybe you’ve rinsed and repeated that cycle multiple times and now you have multiple certifications to your name. Your certifications validate y… Continue reading CompTIA Stackable Certifications→

20 Critical Security Controls: Control 17 – Implement a Security Awareness and Training Program

Posted on March 26, 2018 by Travis Smith

Today, I will be going over Control 17 from version 7 of the CIS top 20 Critical Security Controls – Implement a Security Awareness and Training Program. I will go through the nine requirements and offer my thoughts on what I’ve found. Key … Continue reading 20 Critical Security Controls: Control 17 – Implement a Security Awareness and Training Program→

Malware and Memory Forensics Training Headed to Herndon and Amsterdam!

Posted on February 28, 2018 by Andrew Case

After another highly successfully year of our Malware and Memory Forensics training, which included sold-out public trainings in Herndon, VA and London as well as several private trainings, we are excited to announce our lineup of public trainings for … Continue reading Malware and Memory Forensics Training Headed to Herndon and Amsterdam!→

Professionally Evil Web Application Security Class Live in Charlotte NC

Posted on February 15, 2018 by Kevin Johnson

Are you a developer who wants to better understand web application security? Are you a security practitioner who needs to delve into web app penetration testing? Well now you have your chance! Come and learn how to hack web application… Continue reading Professionally Evil Web Application Security Class Live in Charlotte NC→

The Future of SamuraiWTF

Posted on February 14, 2018 by Mic Whitehorn-Gillam

Samurai Web Testing Framework, if you’re not familiar with it, it’s a linux environment that is primarily now used for teaching web application penetration testing. It has a number of target web applications to train against, and a curated … Continue reading The Future of SamuraiWTF→

The Analytic Staircase for Auditors

Posted on February 13, 2018 by skyyleracl

Building a successful audit analytics program is like climbing a staircase. The staircase is a set of steps that consist of several items having increasing levels of maturity. The staircase steps not only help you build your program, but enable …… Continue reading The Analytic Staircase for Auditors→