1 How Do We Prepare the Next Generation ofcyber Warrior? Education v. Experience April 30, 2014 Jesse Mayer and RobbMayeski Northrop Grumman Cyber Security Operations Center
2 Overview Who are we? Introduction The next generation Current education standards Competitive programs What to look for when recruiting
3 Who are we? Northrop Grumman CSOC Lead Analysts Mid Atlantic CCDC participants Student Teams Red and White team members Cyber Patriot Presenters DC3 Cyber Forensics Challenge Specialties in Cyber Security and Information Assurance
4 Introduction The big questions: What does it take to prepare yourself for the cyber industry? Is a college degree enough? Is there more? What should I really be looking for when recruiting OOC (out of college)? College Graduate with 0 work experience Graduates with 1-2 years of work experience Graduates with internship experience
5 The next generation Technology is not a commodity, it s a lifestyle. For average user, security is assumed and often overlooked Safety net assumption, a degree does NOT equal a job Higher Education is often required Master Degree is becoming the new standard What should students do to be well-rounded and competitive in this field? Applicable knowledge Certification courses that do hands on training
6 Get Educated Many programs are a hybrid of computer science and computer information systems. Most require classes in ethics, policy and project management. Teach the logical processes behind: Protecting networks from cyber attacks Performing forensics in a corporate environment Understanding criminal investigation and how to maintain legal organization Why are there so few programs? College s have little input from the professional industry on shaping these programs Without professional direction, there is no current standard (other thandodcertified center of excellence)
7 Top Programs Each of the following universities are certified National Centers of Academic Excellence in Information Assurance Education by the National Security Agency and Department of Homeland Security. Northeastern University UMASS Amherst Towson University University of Maryland, College Park Mississippi State University Oklahoma State Syracuse University of Pittsburgh
8 Get Competitive There is nothing like taking all of that education and putting it to good use. Some programs start as early as high school, such ascyberpatriot Education goes as far as the door, practical application is needed just as much as an internship at a leading company. Not all Internships are made equal Many programs, such as CCDC and DC3 Forensics Competition have the best in the world behind the curtains, giving them legitimacy.
9 CCDC The Collegiate Cyber Defense Competition instills several core values that you never get as a student. Practical application of core knowledge in real time scenarios On the clock pressure to perform while leveraging business needs with security Working in a team, communicating, and performing as a single unit instead of an individual Scored based on their ability to detect and respond to outside threats, maintain the availability of core services, respond to business request and balance their security needs against the business needs. This year the team operated in a disaster recovery scenario where they have to input names of victims, and are additionally graded for how many people are saved
10 DC3 DC3 Cyber Forensics Competition 1,254 teams from around the world 181 undergraduate programs, 37 community colleges, 79 graduate teams Everyone competes inside their bracket, and against everyone else for the Grand Champion spot 40 Forensic Activities Levels Ranging from basic forensics concepts like password discovery to developing new tools 2013 developed tools for TrueCrypt, HPA, BitLocker, OTFE, andiosdevices Prepares students by requiring out-of-the-box thought, and looking at the problem in depth before deciding on a solution. Things are rarely black and white, and require on the fly innovation to be successful
11 Building a Legacy Companies are looking to get a younger, more innovative work force Balance between proven work ability and learning curve Learning Curve Balance between education, competitive programs, and internships ADAPTABILITY INNOVATION Diverse Degrees Shift from mainframe and hardware to SAAS / Remote ability Training Curve Amount of time to create an independently functioning analyst
12 Points for Recruitment Where does our money go when we invest in collegiate programs? What s the ROI for our cash flow? Are we investing in the programs that we want to recruit from? What do we currently look for? A solid resume doesn t just show education, internships, or competition experience but an active balance across all three. Not all internships are equal Are you an intern, or are you an INTERN? Look at interns across all sectors of your company, not just your security programs.
13 Future Initiatives Be more engaged in the schools that you invest in Visit their program space and do demos / tech talks Invest in creating a cyber security lab for research initiatives Sponsorship Have a presence at competitive programs Sponsor programs at universities to get name recognition Mentor students and engage competitive teams Volunteering to mentor students goes a long way Cyber CAPSTONE Create a program for graduating seniors that allows them to work in a SOC environment