Building the Next-Gen Cyber Professionals · Keeping Young Hackers Out of Orange Jumpsuits (even if...
Transcript of Building the Next-Gen Cyber Professionals · Keeping Young Hackers Out of Orange Jumpsuits (even if...
Building the Next-Gen Cyber Professionals
Ron Woerner
Tuesday, May 16, 2017, 11:00am
M100G-H
Keeping Young Hackers Out of Orange Jumpsuits (even if it's the new black)
Tweet along: #Sec360 www.Secure360.org
Alternative Title:
3
R U a H@cker?
I am
Ron Woerner
• InfoSec Architect, Carlson Rezidor Hotel Group
• Professor Cybersecurity Studies, Bellevue University
• >25 years corporate IT, 15+ Security
• CISSP, CISM, & Certified Ethical Hacker
• US CyberPatriot Mentor since 2011
• Mentor of the Year 2013-2014
Tweet along: #Sec360 4 Ron Woerner – Hacking Humans
www.Secure360.org
• These are my thoughts based on my studies and experiences
• Normal caveats apply
• Comments & questions are welcome any time
Tweet along: #Sec360 5 Ron Woerner – Hacking Humans
www.Secure360.org
Meet Charlie Kilo*
High School Sophomore
Hacker
* Name changed to protect the guilty
Tweet along: #Sec360 Ron Woerner – NextGen Cyber
www.Secure360.org
Kids are born to hack
8 Tweet along: #Sec360 Ron Woerner – NextGen Cyber
www.Secure360.org
What happens?
Tweet along: #Sec360 Ron Woerner – NextGen Cyber
www.Secure360.org
Out of control
curiosity
No safe place to explore
Lacking
Teachers
Leads to Trouble
Tweet along: #Sec360 Ron Woerner – NextGen Cyber
www.Secure360.org
“Kids today know so much technology”
Tweet along: #Sec360 Ron Woerner – NextGen Cyber
www.Secure360.org
WRONG!
They know about tech.
Most don’t know how it works.
PFM*
* Pure Freakin’ Magic
Test time
How many ways does this have of communicating?
Tweet along: #Sec360 Ron Woerner – NextGen Cyber
www.Secure360.org
Just because I have a degree in Computer Science doesn’t mean I know anything about computers…
Tweet along: #Sec360 Ron Woerner – NextGen Cyber
www.Secure360.org
IT / Cybersecurity is not a part of standard HS curriculum
Tweet along: #Sec360 Ron Woerner – NextGen Cyber
www.Secure360.org
Lack Experience
Lack Resources
No Time
FEAR
IT / Security People Needed
http://www.rand.org/content/dam/rand/pubs/res
earch_reports/RR400/RR430/RAND_RR430.pdf
Tweet along: #Sec360
Ron Woerner – NextGen Cyber www.Secure360.org
What’s going well
• Individual teachers & programs
• Job opportunities & Internships
Tweet along: #Sec360 Ron Woerner – NextGen Cyber
www.Secure360.org
• Gen Cyber
• CyberPatriot
• Hour of Code
• Hack4Kidz
• Hacker High School
• High School CTF
Good things
What’s the answer?
How do we address the issues and multiply what’s going well?
Tweet along: #Sec360 Ron Woerner – NextGen Cyber
www.Secure360.org 20
Embrace kids inner hacker
Teach them hacking?!
CyberPatriot Demo
Tweet along: #Sec360 Ron Woerner – NextGen Cyber
www.Secure360.org
Build your own playground
Tweet along: #Sec360 Ron Woerner – NextGen Cyber
www.Secure360.org
High School CTF
http://hsctf.com/
Tweet along: #Sec360 Ron Woerner – NextGen Cyber
www.Secure360.org
National Cyber Defense Competition
Tweet along: #Sec360 Ron Woerner – NextGen Cyber
www.Secure360.org
http://www.nationalccdc.org/
PLEASE HELP!!!!!
1. More teams
2. More teacher coaches
3. The kids need the direction, or else they’ll turn to the dark side
4. You learn a lot
5. Professional mentors get CPEs / find recruits
6. Low $ needed
Volunteer Opportunities
• (ISC)2 Foundation - Safe and Secure Online Program
• (NCSA) National Cyber Security Alliance
• CyberPatriot
• Hackid Conference
• Hacker Highschool
https://www.rsaconference.com/about/rsac-cyber-safety/rsac-cyber-safety-volunteer-opportunities
Tweet along: #Sec360 Ron Woerner – NextGen Cyber
www.Secure360.org
Benefits
Kids
Everyone
You
Tweet along: #Sec360 Ron Woerner – NextGen Cyber
www.Secure360.org
Getting a Cybersecurity job
• Breaking into the Cybersecurity Field – Derek Carlin
• Breaking into Security – 2015
• Breakin' into Security
• Josh More • Breaking into Information Security
• Job Reconnaissance
Education
Experience
Training
Tweet along: #Sec360 Ron Woerner – NextGen Cyber
www.Secure360.org
Links & Resources
Tweet along: #Sec360 Ron Woerner – NextGen Cyber
www.Secure360.org
• Blogs:
• http://www.csoonline.com/blog/educating-next-gen-
cybersecurity-leaders/
• https://securityintelligence.com/cyber-competitions-do-you-have-
what-it-takes/
• Hak4Kidz - http://www.hak4kidz.com/
• CyberFed – http://www.cyberfed.org/
• CyberPatriot – http://www.uscyberpatriot.org
Links & Resources
Tweet along: #Sec360 Ron Woerner – NextGen Cyber
www.Secure360.org
• How To Geek School – http://www.howtogeek.com/school
• Microsoft SysInternals – https://technet.microsoft.com/en-
us/sysinternals/bb795535.aspx
• High School CTF – http://hsctf.com/
• Facebook CTF – https://www.facebook.com/notes/facebook-ctf/facebook-ctf-is-now-
open-source/525464774322241/
• EPIC HowTo Be A Hacker –
https://www.youtube.com/watch?v=tlezBUdD53w
Ron Woerner, CISSP, CISM
@ ronw123
ronw2007 (at) gmail.com
Tweet along: #Sec360 33 Ron Woerner – Hacking Humans www.Secure360.org