The course provides hands on laboratory exploration of adversarial cyber threats to DOD networks and weapon systems. No previous experience in cybersecurity is necessary. Students will learn and execute (in the lab environment) basic offensive cyber techniques, develop system requirements to defeat the threats, implement countermeasures and assess countermeasures effectiveness. Two days are spent on enterprise network attacks and security countermeasures and one day is spent working with an unmanned aerial system simulator which is representative of currently fielded DOD unmanned weapon systems. The inclusion of offensive techniques training for DoD weapon systems differentiates this workshop from similar training provided in the commercial sector.
Learning Objectives
The objective of this workshop includes the ability to: Use threat based engineering principles to support decisions made regarding cybersecurity throughout the system development lifecycle. Analyze cyber-attack vectors—“Think like an adversary”. Describe the approach to “baking in” cybersecurity in designs as part of the systems engineering technical processes. Develop system requirements which are intended to reduce the likelihood of cyber-attack success or reduce the mission impact of a successful attack. Execute cyber-attacks against networks and weapon systems in a laboratory environment to identify vulnerabilities. Execute cyber-attacks against networks and weapon systems in a laboratory environment to assess effectiveness of implemented countermeasures. Describe how threat based engineering and assessment are accomplished. Describe the ethical and legal requirements associated with offensive cyber operations.
Framework Connections
- Cyberspace Intelligence
- Design and Development
- Implementation and Operation
- Oversight and Governance
- Protection and Defense
The materials within this course focus on the NICE Framework Task, Knowledge, and Skill statements identified within the indicated NICE Framework component(s):
Specialty Areas
- Exploitation Analysis
- Risk Management
- Systems Analysis
- Training, Education, and Awareness
- Vulnerability Assessment and Management
Feedback
If you would like to provide feedback on this course, please e-mail the NICCS team at NICCS@mail.cisa.dhs.gov. Please keep in mind that NICCS does not own this course or accept payment for course entry. If you have questions related to the details of this course, such as cost, prerequisites, how to register, etc., please contact the course training provider directly. You can find course training provider contact information by following the link that says “Visit course page for more information...” on this page.