Empowering Cybersecurity Professionals with Real World Attack Tactics

Walsh College

20 Mar 202402:08

Summary

TLDRThe transcript discusses an annual curriculum review with top executives, emphasizing the importance of staying updated with new trends in education. It highlights a hands-on approach to cybersecurity training, where students learn to set up phishing emails and payloads to better understand and defend against cyber attacks. The class involves practical exercises using Kali Linux, culminating in a two-week final project where students must breach live targets given only IP numbers, showcasing their ability to find vulnerabilities and infiltrate systems.

Takeaways

📚 Regular curriculum review meetings with C-level executives ensure the course content stays current with industry trends.
🔍 The importance of understanding cyber attack techniques is emphasized for better defense strategies.
💻 Hands-on learning is a key component of the curriculum, with practical exercises like setting up phishing emails.
🎓 Students are taught using Kali Linux, which may be unfamiliar to some, highlighting the diversity of tools in cybersecurity.
🚀 A two-week final project involves live targets, challenging students to breach IP addresses with no prior information.
🤝 Collaboration is encouraged as students work in teams to scan and breach IPs within a limited timeframe.
🎯 The goal is for students to develop the ability to assess targets and devise strategies to infiltrate systems.
📈 The class aims to improve students' problem-solving skills and their understanding of potential vulnerabilities.
🏆 Success in the class is measured by the ability to find a way into all five targets, promoting thorough and comprehensive learning.
🌐 The curriculum is designed to keep pace with the evolving landscape of cybersecurity, adapting to new trends and technologies.

Q & A

How often does the meeting with C-level executives occur?
-The meetings with C-level executives, including CEOs, CIOs, and CTOs, happen on a yearly basis.
What is the purpose of discussing the curriculum with C-level executives?
-The purpose is to present the competencies, skills, and learning outcomes being taught, to identify any gaps, and to receive recommendations on changes or new trends.
What is the significance of teaching red team cyber attack techniques in the classroom?
-Teaching red team cyber attack techniques helps students become better defenders by understanding potential vulnerabilities and attacks they might face.
Which operating system is used for the red team cyber attack class?
-The class uses Kali Linux, which some students might not have experience with.
What was the specific lab exercise mentioned in the transcript?
-The lab exercise involved setting up a phishing email with a payload to deliver and take over a system.
How does the class culminate for the students?
-The class ends with a two-week final project where students have to scan and breach live targets given by their IP numbers.
What is the main objective of the final project?
-The main objective is for students to assess the targets, identify vulnerabilities, and find a way to breach and gain access to the systems.
What is the expectation for the final project outcomes?
-Students are expected to successfully breach all five given IP addresses, demonstrating their understanding and ability to find vulnerabilities.
How do students generally perform in the final project?
-Most students perform exceptionally well by the end of the class, indicating the effectiveness of the hands-on learning approach.
Why is it important for students to understand both attacking and defending in cybersecurity?
-Understanding both sides is crucial as it provides a comprehensive view of cybersecurity threats and defenses, enabling students to better protect systems against real-world attacks.
What are some of the new trends that C-level executives might recommend for curriculum changes?
-While not specified in the transcript, C-level executives might recommend updates to reflect the latest technologies, methodologies, and threats in the cybersecurity landscape.