Hands-On Training

★ IT1 and IT2 require additional registration via Eventbrite ★

 

IT1/2 – Survey, Analyze, Prioritize, and Respond eXercise (SAPR-X)

Bill Reed, Robert Beveridge

The SAPR-X is a 4-hour, hands-on training exercise designed for intermediate cybersecurity practitioners. Each student will have the opportunity to Survey a small network using freely available network mapping and vulnerability assessment tools. They must then Analyze those findings in conjunction with critical business information in order to Prioritize remediation actions. Performers are expected to identify several configuration and security vulnerabilities on their networks. They will not be able to fix them all, but instead must choose the top issues that need to be addressed. Those decisions will significantly impact their ability to detect, analyze, and attribute the threats that are injected into the environment during the Response phase of this training exercise.

Recommended Skills

Students will have the opportunity to perform tasks on their own, or follow step-by-step guides to answer corresponding quizzes throughout the training event. Experience with the following tools will be helpful, but is not required: NMap, Linux/Windows Command Line (cd, dir, ls, grep, awk, more, find, sed), Windows Event Log review, TCPDump, Wireshark, NTOP, Clam AV, Squid, Endian firewall, pfSense firewall, Quagga, Cisco IOS.

Requirements

Students must bring their own wi-fi enabled laptop. A modern HTML5 compatible browser is also required such as Internet Explorer 9+, Chrome 4+ and Firefox 35+. A minimum resolution of 1280×1024 is recommended, with 1024×768 required. Students will be responsible for completing the training quizzes within their individual exercise, but they are strongly encouraged to collaborate with others. Depending on performers’ skills and the remediation choices selected, the ability to answer quizzes and attribute activities will vary.

Instructors

Robert Beveridge, CISSP, MSIA, is a cybersecurity engineer on CERT’s Cyber Workforce Development Team. CERT is a program at the Software Engineering Institute, a unit of Carnegie Mellon University in Pittsburgh, PA. Robert manages a team that develops cyber security courseware, technical demonstrations, and skills based exercises for U.S. Government agencies. Prior to joining the SEI, Robert worked for 20 years as a Sr. Network and Systems engineer for a large logistics company based in Pittsburgh. Robert is also a member of the Air Force reserves. Robert received his Bachelor’s degree in Computer Information Systems from Youngstown State University and a Master’s degree in Information Security and Assurance from Norwich University.

William “Bill” Reed, CISSP, MSIT, is a cybersecurity engineer on CERT’s Cyber Workforce Development Team. CERT is a program at the Software Engineering Institute, a unit of Carnegie Mellon University in Pittsburgh, PA. Bill develops training and exercises for U.S. government agencies. Prior to joining the SEI, Bill worked for PNC Bank as a network security engineer specializing in perimeter defense. Bill also has 12 years of network and systems administration experience in the retail and higher education sectors. He received his bachelor’s degree in CIS from The Franciscan University of Steubenville and a M.S. in information technology, with a concentration in information security and assurance, from Carnegie Mellon University.