Secure Design: Course and Experimentation Workshop
Undergraduate 300-400 level.
“Secure Design: Course and Experimentation Workshop.”
To access the course materials described below, please CLICK HERE TO LOGIN to the Cyber Curriculum Library Online Portal.
Topics and Subtopics include:
“Secure Design” with emphasis on [SUBTOPICS NOT PROVIDED IN SOLICITATION].
“Cybersecurity Workforce Training” with emphasis on [SUBTOPICS NOT PROVIDED IN SOLICITATION].
And “Secure Design of IoT-enabled Services” with emphasis on [SUBTOPICS NOT PROVIDED IN SOLICITATION].
NCWF Categories included:
Securely Provision (SP)
NCWF Specialty Areas included:
[NOT INCLUDED IN SOLICITATION]
NCWF KSAs included:
K0001: Knowledge of computer networking concepts and protocols, and network security methodologies.
K0002: Knowledge of risk management processes.
K0003: Knowledge of laws, regulations, policies, and ethics as they relate to cybersecurity and privacy.
K0004: Knowledge of cybersecurity and privacy principles.
K0005: Knowledge of cyber threats and vulnerabilities.
K0006: Knowledge of cyber threats and vulnerabilities.
K0012: Knowledge of capabilities and requirements analysis.
K0018: Knowledge of encryption algorithms
K0019: Knowledge of cryptography and cryptographic key management concepts
K0036: Knowledge of human-computer interaction principles.
K0045: Knowledge of information security systems engineering principles.
K0058: Knowledge of information security systems engineering principles.
K0062: Knowledge of packet-level analysis.
K0086: Knowledge of system design tools, methods, and techniques, including automated systems analysis and design tools.
K0087: Knowledge of system software and organizational design standards, policies, and authorized approaches relating to system design.
K0090: Knowledge of system life cycle management principles, including software security and usability.
K0147: Knowledge of emerging security issues, risks, and vulnerabilities.
K0150: Knowledge of enterprise incident response program, roles, and responsibilities.
K0165: Knowledge of risk/threat assessment.
K0229: Knowledge of applications that can log errors, exceptions, and application faults and logging.
K0297: Knowledge of applications that can log errors, exceptions, and application faults and logging.
K0362: Knowledge of attack methods and techniques.
K0375: Knowledge of wireless applications vulnerabilities.
S0001: Skill in conducting vulnerability scans and recognizing vulnerabilities in security systems.
S0005: Skill in applying and incorporating information technologies into proposed solutions.
S0006: Skill in applying confidentiality, integrity, and availability principles.
S0022: Skill in applying confidentiality, integrity, and availability principles.
S0023: Skill in designing security controls based on cybersecurity principles and tenets.
S0024: Skill in designing the integration of hardware and software solutions.
S0036: Skill in evaluating the adequacy of security designs.
S0051: Skill in the use of penetration testing tools and techniques.
S0061: Skill in writing test plans.
S0066: Skill in identifying gaps in technical capabilities.
S0077: Skill in securing network communications.
S0116: Skill in designing multi-level security/cross domain solutions.
S0122: Skill in designing multi-level security/cross domain solutions.
S0135: Skill in secure test plan design.
S0141: Skill in assessing security systems designs.
S0147: Skill in assessing security controls based on cybersecurity principles and tenets.
S0171: Skill in performing impact/risk assessments.
S0333: Skill to graphically depict decision support materials containing intelligence and partner capability estimates.
S0357: Skill to anticipate new security threats.
S0358: Skill to remain aware of evolving technical infrastructures.
A0001: Ability to identify systemic security issues based on the analysis of vulnerability and configuration data.
A0013: Ability to communicate complex information, concepts, or ideas in a confident and well-organized manner through verbal, written, and/or visual means.
A0015: Ability to conduct vulnerability scans and recognize vulnerabilities in security systems.
A0016: Ability to facilitate small group discussions.
A0023: Ability to design valid and reliable assessments.
A0024: Ability to develop clear directions and instructional materials.
A0041: Ability to use data visualization tools.
A0048: Ability to apply network security architecture concepts including topology, protocols, components, and principles.
A0049: Ability to apply secure system design tools, methods and techniques.
A0054: Ability to apply the Instructional System Design (ISD) methodology.
A0080: Ability to develop or recommend analytic approaches or solutions to problems and situations for which information is incomplete or for which no precedent exists.
A0089: Ability to function in a collaborative environment, seeking continuous consultation with other analysts and experts—both internal and external to the organization—to leverage analytical and technical expertise.
A0096: Ability to interpret and understand complex and rapidly evolving concepts.
A0105: Ability to tailor technical and planning information to a customer’s level of understanding.
[NOT PROVIDED IN SOLICITATION], [NOT PROVIDED IN SOLICITATION]. The ability to hold IoT-enabled workshops is recommended. Modules can be used separately or in whole. Syllabi, teaching materials, student materials, readings, and activities are provided. Curriculum overall focus on interaction and graphic design aspects of cybersecurity workforce as well as focus on IoT.