What is the minimum security skill in ICT

Without going into too much commercial and academic detail, today I was in the process of creating an assessment for our current CCNP ISCW course. Irrespective of Cisco programme developments, academia moves at a unique pace, where change occurs in epoch based cycles. I cannot share anything about my thoughts regarding this assessment, for totally obvious reasons, but can reflect on the wider subject of assessment of a security discipline.

In an discipline that is constantly changes, new exploits and defence mechanisms are continuously evolving, you have to consider the important questions:

How can education in ‘security’ reflect current practice and trends in ‘security’.
Are the skills being delivered in ‘security’ enough to prepare students for the demands of ‘security’.
What is a the minimum skill required to ensure that someone is competent to maintain the security of any system.

Big question, me thinks.

Andrew Smith
Follow me on Twitter: @teraknor

Comments

Post a comment

Popular posts from this blog

Simulation vs emulation vs virtualisation ....

So, that was an interesting thought, there is a blur of ideas in many research papers I have read where I have wondered if the authors actually know the difference between emulation, simulation and virtualisation. I am not going to claim to be the definite source on this one, but here goes. Emulation : it pretends to be the environment, such as a gaming console, where the 'code' in the guise of ripped ROMs are tricked into thinking that they are running on their host platform. Emu's run like the real thing, but are not. There tends to be no interaction between the emulator and the underlying system, where the emu is effectively the application. I have used emulators for the SNES, Sega MegaDrive and my old ZX spectrum. Virtualisation: it acts like the real thing, pretending to be 'real hardware'. Therefore an operating system does not know if its on bare metal or within the virtualisation environment. By virtue of its affordance, the hypervisor within the virtu
Read more

You can't free a fish from water ...

You have to face it, in some ways we are all fish in our own personal ponds. Some of us succeed in changing the water, finding a different or more interesting pond. Yet remain a fish in water, unless we evolve, Often work takes me around the country (and sometimes the world). Part of my working ethos is to share advice, experience and a can do (rather than a cannot do) approach to qualification delivery. Yet so many seem trapped in a self created universe; a perception of what their limitations are and how they bind them in what they do. It is rare to see fish fly, but they do, it is rare to see fish survive out of water but some can. Some fish climb, to change their environment others seek bigger more plentiful ponds until they become oceans. You can't free a fish from water, that is its choice alone.
Read more

Slow are the wheels that maketh the #Linux NAL ...

Image
The wheels at my university are renowned for being slow and cumbersome. However, getting a simple prepackaged course from a 3rd party with no rights issues out there has been nothing short of escargot'esqe. As of the 1st of May 2017 - we have our first Linux NAL - following the model of the relevant knowledge courses that once occupied the students of the Open University. Offering Linux is not a new notion - having offered for three years a short course in Linux that was at the time ahead of most in reaching a distance learning population. In this short time, we engaged with over 2400 students giving them all a taste of Linux. Now, with the maturity of HTML5 and some considerable insight from NDG and LPI in collaboration with Cisco Systems. We are able to offer a fully remote Linux experience. With the Linux operating system running as a web browser based cloud instance. Our first presentation of this course will have all the hallmarks of a discovery experience - while
Read more