The critical national shortage of cybersecurity professionals is not just a national security threat, it also impacts businesses everywhere.
And while there are many urgent initiatives to address this shortage, as a nation we simply aren’t producing enough security professionals soon enough.
According to Cybersecurity Ventures, there will be more than 3 million unfilled cybersecurity positions globally by 2021, and there are currently more than 350,000 unfilled security positions in the U.S.
The two solutions gaining the most focus – encouraging students to consider degree courses in cybersecurity, and introducing young high school students to the idea of cybersecurity as a career – have one common fault. It will likely be years before any benefit is felt.
ACT- Accelerated Cybersecurity Training
Accelerated Cybersecurity Training may be the answer, with the potential of producing hundreds and possibly thousands of trained, certified, and workforce-ready entry-level security professionals every year.
ACT is a 6-month full-time accelerated training program with a dual track of security and privacy and resulting in a dual certification of Comptia Security + and Certified Information Privacy Technologist (CIPT). Other in-demand security certifications may also be added.
The ACT program will be intensive and full time, 5 days per week, 8 hour per day. The first three months will focus exclusively on classroom and lab training, and last three months a mix of classroom training and practical experience with the possibility of internships with local firms, shadowing of IT and security teams from local companies, and hackathons and hacking competitions to gain real-world experience.
An emphasis will be placed on training students on the most popular and open source security tools including Open VAS, Nessus, Wireshark, Nmap, Nikto, Metasploit, and Retina.
The program will also include:
• A guest speaker each week to share their experience and advice.
• A career guidance program, hosted by specialists in security recruitment, to help participants better understand the job and career landscape and choose their best path.
• Job placement assistance.
• An open career day where students can meet and network with local employers.
• Supplementary lessons on interview skills, including helping students understand the changing and challenging world of security, the top challenges, current discussions, emerging technologies, industry groups.
• Computer network and defense fundamentals
• Network security threats, vulnerabilities, and attacks
• Network security controls, protocols, and devices
• Physical security
• Host security
• Firewall configuration and management
• IDS configuration and management
• VPN configuration and management
• Wireless network defense
• Network traffic monitoring and analysis
• Data backup and recovery
• Incident response and management
• Introduction to ethical hacking
• Foot printing and reconnaissance
• Scanning networks
• System hacking
• Malware threats
• Social engineering
• Denial of service
• Session hijacking
• Hacking web servers
• Hacking web applications
• SQL injection
• Hacking wireless networks
• Hacking mobile platforms
• Evading IDS, Firewalls, and Honeypot
• Cloud computing
• Risk assessment
• Insider Threat
• Forensic analysis
• Security policies and laws
• Critical privacy concepts and practices that impact IT
• Consumer privacy expectations and responsibility
• How to bake privacy into early stages of IT products and services for cost control, accuracy and speed-to-market
• How to establish privacy practices for data collection and transfer
• How to preempt privacy issues in the Internet of Things
• How to factor privacy into data classification and emerging tech such as cloud computing, facial recognition and surveillance
• How to communicate privacy issues with partners such as management, development, marketing and legal.
• Security regulations and standards – HIPAA, Hitech, GDPR, ECPA, COPPA, FACTA, PCI, GLBA.
Students will have the option of learning how to build, maintain, and promote a robust employee security awareness program. Employee security awareness is essential for every organization, regardless of size. Having a team member capable of managing this critical challenge should make that employee more valuable as a team member and more appealing as a hire.