Introduce cybersecurity governance, risk management, and compliance concepts and skills to computer science and technology students preparing them with know-how that employers are seeking.

NCyTE Center (formerly CyberWatch West) and the Center for Systems Security and Information Assurance (CSSIA) sponsored a series of workshops for community college faculty in 2019.

"Seven 1-day workshops were hosted by NSA CAE institutions across the country and online in 2019," explains John Sands, Co-PI at the Center for Systems Security and Information Assurance (CSSIA). These workshops present a series of twelve exercises focusing on cybersecurity Governance, Risk Management and Compliance (GRC) and incorporate hands-on labs, auditing activities and group projects into the 8-hour sessions. Participants are given access to a course shell, assessment items and a short capture the flag toolkit.

These materials and the workshop were developed in response to a national need for the cybersecurity technician workforce to be more knowledgeable and involved in the compliance process.

This workshop was designed for college faculty that teach cybersecurity and information assurance programs who recognize that community college cybersecurity program graduates must be better prepared for the Qualified Security Assessor (QSA) certification exam. Business leaders from across the nation have expressed this need repeatedly. Students performing audits for the PCI-DSS (Payment Card Industry - Data Security Standard) compliance are required to have this certificate.

Course Materials

• CISA Course Objectives
• Proposed-Labs
• Governance, Risk Management, & Compliance (GRC) Labs
• NICE Framework Work Roles List
• Framework Handouts
• Annex IX
• CIS Controls Overview - 5 pgs
• CIS Controls v7.1 - 76 pgs
• ISO 27001 Standards Overview - 16 pgs
• NIST 800-53 Security Controls Overview - 6 pgs
• NIST 800-53 Security Controls - 467 pgs
• PCI SSC Quick Reference Guide - 34 pgs
• PCI-DSS Controls Overview - 4 pgs
• Framework Posters
• CIS Controls Poster
• ISO 27001 Standards Poster
• NIST 800-53 Security Controls Overview Poster
• PCI-DSS Controls Overview Poster
• NSN Exercises (Each Project contains: Overview, Teacher Summary, Student Summary, and Rubric)
• Project 1
• Project 2
• Project 3
• Project 4
• Project 5

Presenter

John Sands, Ph.D.
Professor, Department Chair - Professor Computer Integrated Technologies at Moraine Valley Community College; Director and PI – CSSIA Center

Full Online Workshop

Length: 3 hour 43 minute
Date: August 13, 2019
Title: Online workshop conducted at Moraine Valley Community College

Presenter: John Sands, Ph.D. Professor, Department Chair at Moraine Valley Community College, Co-PI at the Center for Systems Security and Information Assurance (CSSIA)

Move Video to youtube (file is too big for internal use) - and insert iframe over this sentence

Summary Online Webinar: Monthly Member Webinar

Length: 0 hour 25 min
Date: October 25, 2019
Title: Monthly Member Webinar

Presenter: John Sands, Ph.D. Professor, Department Chair at Moraine Valley Community College, Co-PI at the Center for Systems Security and Information Assurance (CSSIA)

Free viewers are required for some of the attached documents.
They can be downloaded by clicking on the icons below.

Acrobat Reader Windows Media Player Word Viewer Excel Viewer PowerPoint Viewer