412 TW

412th RANS Cyber Career Path and Way

Forward

Marc Holley

16 May 2019

412 TW

Agenda• Background• Cyber Professionals/Teams• 412th RANS Cyber Training Path• Path Forward• Strategic Solutions

412 TW

Background

412 TW

Background

412 TW

Background

412 TW

Background• Types of cyber attacks

– DoS/DDoS – A denial of service attack overwhelms a systems resources so that it cannot respond to requests.

– MitM – A hacker inserts himself between a client and a server.

– Phishing/Spear phishing – Practice of sending emails that appear to be from trusted sources.

– Password attack – Various methods used to obtain a password.

– Malware – Unwanted software that is installed on your system without your consent.

412 TW

Cyber Teams/Professionals• To combat today’s cyber threats one must identify

and organize cyber teams and cyber professionals.– Average salary in the US is $117k.– Lack of fully qualified people.– Retention of qualified people.

412 TW

412th RANS Cyber Path

Entry Level: Training program

assigned along with a mentorand a tailored

IDP.

ENRP Training, Certification and

Development (TCD) Policy

Baseline Training &

Certification

Cyber Technical Project Mngt

Journeyman & Sr. Journeyman Level:

Training and certification program assigned along with a

tailored IDP.

CCAS Contribution Planning initiated & incorporated into the employees’ IDP.

NEOAssociate’s Degree

CALT

Bachelor’s DegreeSOS

APDP CertificationDCELP

Master’s DegreeACSCCPMC

Leadership TrainingEWI

Advanced DegreeAWC

DSLDPEIG

CSLPCareer Broadening

DSLP

Cyber Professional

Lead

Lead & Section Supervisors:

Tailored IDPs. Technical

LeadOperations

Lead

Professional Development

Paths

Flight Chief

Flight Chief: Tailored IDP, Mentored &

Career Broadening.

KSA-Driven based upon SWOT

412 TW

412th RANS Cyber Path

412 TW

412th RANS Cyber Path

Cyber Security College Training/Certs Training/Certs Training/Certs Training/Certs

-Entry Level AA DAU IT Level I Security+ CCFC/Cyber 100

-Intermediate Level BA/BS DAU IT Level II CAP Cyber 200 NDU Cyber-S

-Advanced Level MA/MS DAU IT Level III CISSP Cyber 300 NDU CIO

412 TW

Path Forward• Development of a MDT.

– The MDT will manage and coordinate all Cybersecurity activities at the Range.

– The MDT will be appointed as Range ISSO’s with an ISSM lead.

– The MDT will coordinate with the TENG ISSM and ISSO to ensure Range Mission requirements are integrated with 412th Information Protection security requirements.

412 TW

Path Forward• MDT Tasks

– Identify Cybersecurity requirements – Coordinate with approval authorities and related IT agencies to stay up to date with all new cyber requirements.

– Direct implementation of cybersecurity requirements for Range Systems –Coordinate with Range system administrators to ensure cybersecurity requirements are implemented. Set tasks and suspense dates for cybersecurity related functions.

– Cybersecurity Change Management – Manage cybersecurity related ECR’s and CCR’s.

– System Vulnerability identification and assessment – Coordinate with system administrators to identify system vulnerabilities using current cybersecurity tools and methodologies. Ensure proper system scanning is taking place and results are reviewed.

– System Vulnerability remediation or mitigation. Direct system administrators in the instillation of required security updates or policy enforcement and verify changes. Verify system changes have been properly implemented.

412 TW

Path Forward• MDT Tasks (cont)

– Verification of system audits – Coordinate with system auditors to ensure audits have been conducted and thoroughly reviewed. Investigate any anomalous actives.

– Network scanning – Scan Range networks for unusual activity and vulnerabilities. Coordinate with network engineers to investigate any abnormalities and ensure any vulnerabilities are properly mitigated.

– Innovation – Investigate future cybersecurity requirements and challenges. Create comprehensive plans to meet future requirements or challenges and develop possible solutions.

– *Patch Management .– *Code Review.

412 TW

Path Forward• Range Cyber Training Plan:

Training Requirement / Course / Event Title ENRP Candidates

Length of Training

(Days)

Travel (Air & rental or

PO V) Lodging M&IE

Total Travel costs

Total Training

costsTotal Costs

Comments / Justification

Cyber Security: A Systems Approach MDT Member 1 3 $900 $592 $276 $1,768 $1,695 $3,463 Georgia Tech Cyber CertDigital Forensics Techniques for Weapons Systems MDT Member 1 3 $900 $592 $276 $1,768 $1,695 $3,463 Georgia Tech Cyber CertIntroduction to Penetration Testing MDT Member 1 3 $900 $592 $276 $1,768 $1,895 $3,663 Georgia Tech Cyber CertOpen Source Digital Forensics MDT Member 1 2 $900 $444 $207 $1,551 $1,295 $2,846 Georgia Tech Cyber CertCyber Risk Management for Decision Makers MDT Member 1 2 $900 $444 $207 $1,551 $1,295 $2,846 Georgia Tech Cyber Cert

Functional Mission Analysis (FMA) Training MDT Member 1 5 $900 $900 $414 $2,214 $0 $2,214Maxwell AFB-Centrally

Funded

Certified Authorization Professional (CAP) Cert MDT Member 1 5 $0 $0 $0 $0 $2,700 $2,700Commercial Vendor

(Online)Cyber 100 (aka Civilian Cyber Fundamentals Course) MDT Member 1 5 $0 $0 $0 $0 $0 $0 Online via AFITCyber 200 (AFIT) MDT Member 1 21 $700 $0 $0 $700 $0 $700 AFIT (Centrally Funded)Cyber 300 (AFIT) MDT Member 1 14 $500 $0 $0 $500 $0 $500 AFIT (Centrally Funded)

Security+ Certification (or DOD 8570 equivalent) MDT Member 1 5 $0 $0 $0 $0 $0 $0Training Provided in-

house for Sec+

412 TW

Path ForwardTraining Funds:

Autonomous $50K annual training budgetYear 1: Foundational Development (GT, LTI, AFIT)Year 2: Credentialing Certs/PME

Objective:Fully trained MDT each year the first two years.

412 TW

Path Forward• Timeline:

– Standup: TBD– Staffing (Recruit & Hire): + 9 Months– Foundational Development (IOC): + 22 Months

Credentialing: + 30 MonthsFOC: + 36 Months

412 TW

Strategic SolutionsA Range Cyber Presence creates the following strategic

solutions:

• Develops a professional Cyber capability within the 412th

RANS.• Provides a wider professional and career progression path

for the 2210 workforce.• Aligns functions and personnel within the Squadron more

effectively.• Attracts better candidates during recruiting and hiring.• Create a cyber culture within the 412th RANS.• Protects and defends the Range’s cyber assets.

412 TW

Review• Background• Cyber Professionals/Teams• 412th RANS Cyber Training Path• Path Forward• Strategic Solutions

Questions?