Cybersecurity Training

Transcription

1 Cybersecurity Training Cook County Department of Homeland Security and Emergency Management (DHSEM), in partnership with Texas A&M Engineering Extension Service (TEEX), is pleased to announce the below listed training opportunities. Delivered locally at no cost to participants, the following cybersecurity courses will be offered: Essentials of Community Cybersecurity (AWR136), The EOC's Role in Community Cybersecurity (MGT384) and Community Cybersecurity Exercise Planning (MGT385). No country, industry, community or individual is immune to cyber risks. As a founding member of the National Cybersecurity Preparedness Consortium, TEEX offers a wide range of online and face-to-face cybersecurity training opportunities. For those new to cybersecurity, non-technical introductory courses create basic awareness and explore cybersecurity in a community context by building basic terminology and identifying fundamental cyber threats, vulnerabilities and countermeasures. Classroom-based training provides individuals, community leaders, and first responders with information on how cyber attacks can impact, prevent and/or stop operations and emergency responses in a community. Scheduled Course Deliveries Essentials of Community Cybersecurity (AWR136) 3 November, 5 November, 1 December or 3 December, 2015 The EOC's Role in Community Cybersecurity (MGT384) 3-4 November or 5-6 November, 2015 Community Cybersecurity Exercise Planning (MGT385) 1-2 December or 3-4 December, 2015 Detailed course information and registration links are found in the pages following. Cook County DHSEM Training Points of Contact: Jeffery Schulman, Training and Exercise Coordinator, jeffery.schulman@cookcountyil.gov Robert Dunne, Training and Exercise Coordinator, robert.dunne@cookcountyil.gov

2 Essentials of Community Cybersecurity AWR Hours 3 November, 5 November, 1 December or 3 December, 2015 The Essentials of Community Cybersecurity (ECCS) course provides individuals, community leaders, and first responders with information on how cyber attacks can impact, prevent, and/or stop operations and emergency responses in a community. The course also provides a cursory introduction to cybersecurity vulnerabilities, risks, threats, and countermeasures. It explains vulnerabilities of computer systems and networks and how these vulnerabilities can affect communities, organizations, and daily workplace operations. The course introduces actions communities can take in establishing a cybersecurity program. The course provides participants with an awareness of issues. It gives an overview of threats and vulnerabilities, without going into too many details, to highlight the potential impact a cyber attack could have. Participants discuss some of the fundamental activities needed to develop a cybersecurity program, without addressing the technical details of how to secure critical infrastructures. The course introduces the Community Cybersecurity Maturity Model (CCSMM) as a framework for understanding community cybersecurity and offers a brief introduction to low cost or no cost approaches to securing a community against cybersecurity threats and attacks. The course sets the stage for further efforts in which a community can build a cybersecurity program. Course Objectives At the conclusion of the course, participants will be able to: Recognize why community cybersecurity is important. Recognize the characteristics of a community cybersecurity program. There are no prerequisites for the course. No prior background in cybersecurity or information technology is required. Why cybersecurity is important Unstructured threats Structured threats Highly structured threats The Community Cybersecurity Maturity Model (CCSMM) Things a community can do to initiate a cybersecurity program Where to go for help The target audience is personnel involved with critical infrastructure, emergency operations, and incident response in public or private organizations, including state, county, and municipal officials; members of industry affiliations and chambers of commerce.

3 The EOC's Role in Community Cybersecurity MGT Hours 3 4 November or 5 6 November, 2015 The EOC's Role in Community Cybersecurity provides an awareness of how cyber events can impact communities. Throughout the course participants will learn the roles and responsibilities needed to detect, prevent and respond to a cybersecurity incident. With examples participants will understand how the EOC and community would plan for and manage information needed for a cyber event. The attendees will also see how cyber can be used to affect, disrupt and/or complicate emergency responses. AWR 136 Essentials of Community Cybersecurity How cyber can impact the business operations of a community Characteristics of how cyber incidents and physical incidents relate Demonstration of information sharing being used to create a "big picture" Explore a cyber event that may active a community response Identify roles, responsibilities, and resources that may be used to address a cyber event People taking this course should be involved with any Emergency Operations Center; State, City, County, University, Hospital or private sector. Anyone involved in all EOC activities curing a community emergency, disaster or other event are encouraged to attend.

4 Community Cybersecurity Exercise Planning MGT Hours 1 2 December or 3 4 December This course is designed to introduce cyber to exercise planners to help them recognize the nature and reach of cyber, so they can better help their communities prevent, detect, respond to, and recover from cyber incidents. Participants will recognize how cyber can be incorporated into exercises in a meaningful way. Participants will be introduced to cyber topics and how cyber can impact the business operations of an organization and community. Lecture and activities will explore objectives, players, cyber injects and challenges to incorporating cyber into exercises. Participants will be exposed to many possible injects and scenarios that can be used in an exercise. Participants will begin development of a community cybersecurity tabletop exercise. The Community Cybersecurity Maturity Model will be used to examine the contribution of exercises to a community s overall cybersecurity posture. This course teaches planning personnel how to include cyber components in their regular planning process. Participants will be given the opportunity to plan cyber components for future community cybersecurity exercises. AWR 136 Essentials of Community Cybersecurity should be completed before attending this course. Participants should have an understanding of the Homeland Security Exercise and Evaluation Program (HSEEP) and have familiarity with community and organizational exercises. The concepts and ideas delivered in IS 120.a An Introduction to Exercises from the Federal Emergency Management Agency may prove to be beneficial in preparation for this course. An Introduction to Cyber Examining Characteristics of Cyber Using the Community Cybersecurity Maturity Model (CCSMM) to Develop Exercise Objectives Exercise Categories Incorporating Cyber Into Exercises Cyber Storylines and Scenarios Planning Community Cybersecurity Exercises This course is designed for personnel with responsibility for planning and conducting exercises in their organization or the community, who need help, assistance, or training on how to address cyber issues in their exercises.

5 For additional information and to register: Essentials of Community Cybersecurity AWR136 Date & Time: 3 November, 2015 (8:00 am 12:00 pm) Registration: Date & Time: 5 November, 2015 (8:00 am 12:00 pm) Registration: Date & Time: 1 December, 2015 (8:00 am 12:00 pm) Registration: Date & Time: 3 December, 2015 (8:00 am 12:00 pm) Registration: The EOC's Role in Community Cybersecurity MGT384 Dates & Time: 3 November, 2015 (1:00 pm 5:00 pm) and 4 November, 2015 (8:00 am 5:00 pm) Registration: Dates & Time: 5 November, 2015 (1:00 pm 5:00 pm) and 6 November, 2015 (8:00 am 5:00 pm) Registration: Community Cybersecurity Exercise Planning MGT385 Dates & Time: 1 December, 2015 (1:00 pm 5:00 pm) and 2 December, 2015 (8:00 am 5:00 pm) Registration: Dates & Time: 3 December, 2015 (1:00 pm 5:00 pm) and 4 December, 2015 (8:00 am 5:00 pm) Registration: