Traditional workshops focus on exposure to new techniques, tools, and instructional materials (i.e., train-the-trainer) by conveying information about a topic. By contrast, the Cybersecurity Skills Development Workshops are designed to develop mastery in skillfully applying techniques, tactics, tools, protocols, or procedures through competency-based instructional designs. These workshops focus on developing understanding and practicing application under varying conditions or scenarios. These workshops, part of the 2023 Cybersecurity Capabilities and Careers Symposia – Mid-Atlantic, assist in raising the capability maturity and readiness of students, faculty, practitioners, or policymakers to adopt and adapt the latest effective practices for performing cybersecurity functions and roles.

When: Saturday, April 1st and Sunday April 2nd from 8am-5pm.

Where: Prince George’s Community College Center for Advanced Technology (CAT) building, 301 Largo Rd., Largo, MD 20774.

Saturday, April 1st Morning Session

A Primer for Threat Modeling

In the first of three, 1/2 day workshops, each building on the previous one, attendees will explore the threat modeling process using an enterprise systems approach. The goal is to provide a foundation in the concepts related to threat modeling, as the basis for participants to continue learning necessary skills to conduct threat modeling in subsequent workshops.

Saturday, April 1st Afternoon Sessions

Developing Threat Modeling Components

In this second of three 1/2 day workshops, participants will begin developing some of the major components that go into modeling threats. The goal of the workshop is to continue building additional skills needed to conduct a threat modeling effort.

Introduction to Cybersecurity Risk for Healthcare Systems

In this 1/2 day workshop, attendees will learn core concepts in managing cybersecurity risk for healthcare systems, and then apply them in hands-on exercises that bridge the theory with the real-world.

Road Map to Becoming A Dynamic Cybersecurity Professional Upon Hire

In this 1/2 day workshop, participants will explore topics ranging from the work to be done before getting hired (e.g., working with recruiters, interviewing); the importance of stakeholder communication; creating your own road map that helps build a foundation as a cybersecurity consultant; What happens once you get hired?; learning development; mentoring relationships; work/life balance; mental health as IT/security professional; and more.

Sunday, April 2nd Morning Session

Creating a Basic Threat Model

In this third of three 1/2 day workshops, participants will work collaboratively in teams to create a basic threat model. The goal of this workshop is to help develop skills in both facilitating a threat modeling effort and in how to perform the steps needed to generate a threat modeling report.

Sunday, April 2nd Afternoon Sessions

Attack and Defend

In this one-day workshop, attendees will spend the morning learning and applying various tactics and techniques attackers use to break into and entrench themselves into systems (including post-exploitation). In the afternoon, participants will then examine the relevant artifacts the attackers left behind.

Capability & Skills Modeling for Operational Awareness

This 1-day workshop delivers critical thinking on general IT and security controls implemented in the organization. Participants will learn how to evaluate technology implemented across the enterprise and consider requisite capabilities to protect critical assets.