Welcome to the 2017 summer edition of the quarterly National Initiative for Cybersecurity Education (NICE) eNewsletter. Our featured article for this edition highlights the President’s Executive Order on Strengthening the Cybersecurity of Federal Networks and Critical Infrastructure, the workforce provisions of the order, and how NICE is working as a community to address those provisions and produce a report to the President. Next, the article on two-year, bachelor of applied science degree programs in IT and cybersecurity describes how community and technical colleges are helping to provide an additional pathway into a cybersecurity career. The Industry Spotlight article dives into cybersecurity concerns for small and medium-sized businesses and the importance of protecting not only infrastructure, but also the human element. Last, the article from the state of Illinois highlights the workforce elements of a two-year, state-wide cybersecurity strategy for Illinois. Illinois is taking a “Best-in-Class Cybersecurity Capabilities” approach with six actions to develop and sustain their cybersecurity workforce. Throughout the rest of the eNewsletter, you’ll find updates from our affiliated programs, such as the National Centers of Academic Excellence in Cybersecurity, registration announcements for upcoming events, and more. I hope you enjoy reading this edition and wish you a cool summer.
On May 11, 2017, the President issued an executive order on strengthening cybersecurity. In part, the order states that it is the policy of the United States “to support the growth and sustainment of a workforce that is skilled in cybersecurity and related fields as the foundation for achieving our objectives in cyberspace.” According to the White House National Security Council, cybersecurity education, training, and workforce development were included in the executive order because growing and sustaining the cybersecurity workforce is a national security concern. We saw further evidence of that point of view when cybersecurity positions were exempted from the federal government hiring freeze in early 2017 because they were deemed to be positions that impacted national security.
The executive order directs the Secretary of Commerce and Secretary of Homeland Security to:
1) “assess the scope and sufficiency of efforts to educate and train the American cybersecurity workforce of the future, including cybersecurity-related education curricula, training, and apprenticeship programs, from primary through higher education”; and,
2) “provide a report to the President with findings and recommendations regarding how to support the growth and sustainment of the Nation's cybersecurity workforce in both the public and private sectors.”
The report is due to the President on September 8, 2017.
The Commerce Department’s National Institute of Standards and Technology (NIST) and the Department of Homeland Security (DHS) are co-leading the assessment and the report to the President. Several other federal departments and agencies are collaborating on this project, including but not limited to the Departments of Defense, Education, Labor, and the Office of Personnel Management. NIST and DHS are reaching out to the public to help inform this study and to generate findings and recommendations. Organizations and individuals may provide their comments in response to a Request for Information (RFI) and by participating in one or more workshops that will be held in communities throughout the United States.
The assessment is expected to support the ongoing work of NICE as it continues to deliver upon its strategic plan delivered to Congress in 2016. The process that is being pursued supports the values outlined in the strategic plan:
The findings will build upon programs and plans, which is consistent with the NICE Strategic Plan and the Cybersecurity Enhancement Act of 2014. Some areas being closely examined under the executive order’s work include:
On June 15th, the President also issued an Executive Order on Expanding Apprenticeships in America. In part, the order states that “it is the policy of the United States to provide more affordable pathways to secure high paying jobs by promoting apprenticeships and effective workforce development programs.” Additionally, it directs “the Secretaries of Commerce and Labor [to] promote apprenticeships to business leaders across critical industry sectors, including manufacturing, infrastructure, cybersecurity, and health care.” (emphasis added)
Together, these two executive orders validate the importance of the work begun by the National Initiative for Cybersecurity Education. They also challenge us, as a community, to do more to address the nation's security needs by growing and sustaining a knowledgeable and skilled cybersecurity workforce. We look forward to your partnership in this effort.
For more information, visit nist.gov/nice/cybersecurityworkforce
The unmet need for a well-trained IT networking and cybersecurity workforce is demonstrated by increasingly serious security breaches across the United States and around the world. Currently, the nation’s cybersecurity workforce is undertrained. Not enough students are entering the education pipeline pursuing degrees or certificates in this field to meet present-day and predicted demand.
Despite numerous initiatives, students seeking affordable, accessible four-year degree programs in IT networking and cybersecurity have limited options. One way in which this issue is being addressed in Washington State is through community and technical colleges.
In 2005, the Washington State Legislature passed HB 1794, allowing designated community and technical colleges to pilot applied baccalaureate programs. In 2012, the Washington State Board for Community and Technical Colleges was authorized to approve all applied bachelor degree programs in the state (see https://www.sbctc.edu/colleges-staff/programs-services/applied-baccalaureates/).
Applied bachelor degrees are designed to meet the needs of students:
thereby expanding access and capacity. These new baccalaureates are developed based on existing two-year professional-technical degrees that include applied credits.
Several colleges in Washington State now offer Bachelor of Applied Science (BAS) degrees in cybersecurity or related fields. These include: Bellevue College (Information Systems & Technology), Columbia Basin (Cyber Security), Green River (Information Technology), Highline (Cybersecurity & Forensics), Seattle Central (Information Technology), Spokane Falls (Cyber Security), and Whatcom Community College (Information Technology: Networking).
Other BAS degrees have started to appear throughout the country, including Northern Virginia and Lord Fairfax Community Colleges in Virginia, and Pensacola and Palm Beach State Colleges in Florida. BAS degrees provide students who have earned a two-year professional-technical degree a pathway into a four-year degree, without repeating or being required to earn additional credits —a common problem with traditional transfers from applied programs into four-year public institutions.
Such practical degrees produce highly skilled workers capable of assuming responsibilities their first day on the job. The design of Whatcom Community College’s BAS degree in IT Networking is based on three focus areas from the National Security Agency’s National Centers of Academic Excellence in Cyber Defense (CAE-CD) knowledge units: secure cloud computing, industrial control systems—SCADA security, and secure mobile technology. The degree also incorporates the National Initiative for Cybersecurity Education (NICE) Workforce Framework in its design, along with the Department of Labor’s Cybersecurity Competency Model.
Whatcom’s BAS degree will be offered on-campus beginning fall 2017. A fully online version is being developed for fall 2018. For more information, visit whatcom.edu/cis.
Whatcom Community College is a National Cyber Defense Resource Center as designated by the NSA, and the host institution of two National Science Foundation-funded grants to assist community colleges and universities with cybersecurity education program development and improvement. For details go to www.CyberWatchWest.org or www.C5Colleges.org.
My company, Optimal Networks, has provided outsourced technology support to Washington DC-area small businesses (SMBs) for over 25 years. Finally, our clients are initiating conversations about security, not the other way around. Small to mid-sized businesses have long operated under the assumption that because of their size, they are of little interest to cybercriminals. Slowly but surely, SMBs are accepting the unfortunate reality that (1) they are very much at risk, and, (2) basic technology defenses are not enough to keep them protected.
To what good fortune do we owe this awakening? From my vantage point, there are a few factors at play:
Whether the push to get serious about security is due to external causes or merely a natural response to the increased threat landscape, SMBs are understanding that it can happen to them, and that their definition of “vulnerability” must identify employees as a critical part of the security puzzle. As a result, businesses are adopting a more comprehensive approach to security that includes staff training as a cornerstone.
Historically, most small businesses have been content with basic technology defenses like an updated firewall, centralized anti-virus and anti-spam, and ongoing maintenance such as regular patching for servers and workstations. These make for a solid foundation, but that foundation alone is insufficient as far as protection goes.4 These protections don’t account for human error (i.e., downloading a malicious attachment) nor do they help contain and remediate a breach or infection if one were to occur.
And cyber criminals know this well.
Symantec’s most recent Internet Security Threat Report5 shows a startling uptick in malicious emails because, “it is a proven attack channel. It doesn’t rely on vulnerabilities, but instead uses simple deception to lure victims into opening attachments, following links, or disclosing their credentials.”
Overall, 1 out of every 131 emails sent in 2016 contained malware, up from 1 in 220 during 2015. For small to mid-sized businesses (250-500 employees), the rate was at its most aggressive: 1 in 95.
In other words, our employees are our weakest link (and potentially our strongest defense) when it comes to network security. If small businesses intend to protect themselves in this ever-evolving landscape, they should:
1. Hold regular, consistent security awareness training.
Even if company-wide awareness training is not mandated by compliance regulations, security awareness training should be central to every cybersecurity initiative. A team cannot protect themselves against what they don’t understand.
This training should touch on types of threats, how they present themselves, what’s at stake, what controls are in place to mitigate risk, where those controls fall short, and how staff can help bridge the gap.6 If in-person company-wide training isn’t feasible, film or otherwise distribute the training and verify that each employee (executives included) has reviewed the content. The less savvy the team and the more sensitive the data, the more frequently these sessions need to be held.
If the business can’t or doesn’t want to run this training internally, they can:
2. Incorporate security into their company culture.
This part cannot be outsourced.
It is, of course, important to have written policies that address passwords, mobile device use, business continuity, data privacy, employee separation, and so forth. IT teams can help businesses design and enforce these policies to an extent.
The problem with only having policies in a handbook is that staff will read them and either forget or ignore them soon thereafter.7
What we recommend, is that SMBs adopt a security-oriented culture to reinforce those policies, and to give them life beyond the policy document. This means adopting a mindset of slight paranoia, where every member of the organization (executives included) questions that odd email they received, hesitates before sending a document with sensitive information, speaks up when a coworker writes their password on a sticky note, and refuses to leave their desk without first locking their machine.
More than anything, if we are to protect our businesses from cyber threats, we can’t keep operating under the delusion that security is purely a technical matter; we must invest in our people, too.
Because one click is really all it takes.
As the recent proliferation of the Wannacry ransomware demonstrates, cyber threats continue to grow both in volume and complexity, placing critical government services and the privacy of our citizens at ever-increasing risk. The demand for a trained and effective cybersecurity workforce continues to grow. The Center for Cyber Safety and Education’s Global Information Security Workforce Study projects that as many as 1.8 million cybersecurity positions will be unfilled over the next five years. The growing cyber-threat, coupled with this daunting talent-gap, creates a proverbial “perfect storm” that must be proactively addressed.
A key goal of the State of Illinois Cybersecurity Strategy is to develop “Best-In-Class Cybersecurity Capabilities.” An important outcome of this goal is to ensure that Illinois' cybersecurity workforce is well-trained, continually developed and aligned with national standards.
The Foundation - The NICE Cybersecurity Workforce Framework
Illinois has aggressively adopted the NICE Cybersecurity Workforce Framework for the development of cybersecurity responsibilities and formal position descriptions. The NICE Framework ensures a consistent best-practices approach as Illinois continues to develop its cybersecurity organization and capabilities.
This direction will align Illinois with the cybersecurity community across government and the private sectors. In time, as organizations adopt the NICE Framework, a common understanding of the expected knowledge, skills and abilities of positions will ensure identification of qualified individuals, and facilitate personnel development programs.
The Objective – Develop and Sustain a Capable and Competent Cybersecurity Workforce
This objective is pivotal to all organizations and critical to government entities. The utilization of managed services or other outsourcing strategies for cybersecurity can help address some functions, but the need for a trained and sustainable internal cybersecurity workforce is not likely to diminish.
The State of Illinois has established six action plans:
The development of a skilled and consistent cybersecurity workforce is a challenge being faced across the globe. Illinois is optimistic that the state’s cybersecurity strategy will provide significant benefits and enhance the state’s ability to reduce the risks posed by cybersecurity threats for years to come.
Various organizations within the U.S. government own and operate programs designed to enhance the cybersecurity education, training, and workforce development needs of the nation. The following are a few of those programs.
National Initiative for Cybersecurity Careers and Studies (NICCS)
NICCS and Cybersecurity Training: The Federal Virtual Training Environment (FedVTE) provides government-wide, online, and on-demand access to cybersecurity training to help the workforce maintain expertise and foster operational readiness. With beginner to advanced courses, the system is available free to federal, state, local, tribal, territorial government employees and to U.S. veterans.
To sign up for an account, visit https://fedvte.usalearning.gov/
Learn more at www.niccs.us-cert.gov
Advanced Technological Education
ADVANCED CYBERFORENSICS EDUCATION (ACE) CONSORTIUM (http://www.cyberace.org)
The Advanced Cyberforensics Education (ACE) Consortium, in collaboration with the Florida Cyber Alliance, held its 5th Annual Cyber Camp June 12-15, 2017, at Daytona State College. During the four-day camp, 40 9th-12th grade students engaged with experts in discussions of cybersecurity and cyberforensics and participated in hands-on exercises and competitions.
Middle Georgia State University hosted an IT summer camp June 13-14, 2017, for 40 high school students. Topics included cybersecurity, robotics, game design, and mobile applications development.
Trident Technical College supported the 5th annual Palmetto Cyber Defense Competition and the 2nd annual Palmetto Digital Cyber Forensics Competition in April 2017. The events were cosponsored by the Armed Forces Communications and Electronics Association (AFCEA) and SPAWAR SSC Atlantic. In July 2017, Trident will sponsor the 4th annual "Girls Day Out," a weekend of cyber- and STEM-related activities for underserved middle school students.
South Piedmont Community College hosted a Cyber Summer Camp for 22 9th-12th grade students on June 12-13, 2017. On July 1, the college will also support the 2017 InfraGard Summer Camp for 30 high school students at Microsoft's Charlotte campus, along with private and public sector organizations such as Microsoft, the FBI, Abagnale & Associates, FireEye, Cisco, PhishMe, Dell Secure Works, Lockfale, Wells Fargo, and Bank of America.
CATALYZING COMPUTING AND CYBERSECURITY IN COMMUNITY COLLEGES (C5) (http://www.c5colleges.org)
The C5 Mentoring Program assisted 14 community colleges from 14 states, as well as four universities from four states, in submitting successful applications for National Center of Academic Excellence in Cyber Defense designations from the National Security Agency and Department of Homeland Security. The new designations were conferred during a ceremony in Huntsville, AL, on June 7, 2017. The new CAE2Y designations for the community colleges brings the total number of CAE2Y institutions to 46.
Three C5 instructional modules -- Applied Cryptography, Secure Scripting, and Responsible Software Development -- have been completed, pilot-tested, and revised, and will be broadly disseminated in three workshops at the Community College Cyber Summit (3CS) on June 28-30, 2017. Four more modules -- Cybersecurity Principles, Cybersecurity Treats and Countermeasures, Security Risky Data, and Cybersecurity and Society -- have also been developed and will be presented during workshops at 3CS. All C5 instructional modules are aligned with the NSA CAE2Y Knowledge Units (KUs), the College Board Advanced Placement Computer Science Principles (AP CSP) curriculum framework, and the ACM Computer Science Curricular Guidelines (CS2013).
CENTER FOR SYSTEMS SECURITY AND INFORMATION ASSURANCE (CSSIA) (http://cssia.org/)
In April 2017, the National Security Agency and Department of Homeland Security designated Moraine Valley Community College, home of CSSIA, as the "Hub" CAE Regional Resource Center (CRRC) for the North Central Region. In this role, the center will promote new applications for CAE designation, assist institutions and their faculty in the application and re-application process, and build a community of CAE institutions in the North Central Region.
In summer 2017, CSSIA's National Faculty Development Institute will offer the following workshops aimed at building the technical credentials and classroom skills of community college faculty: CISSP (Certified Information Systems Security Professional) Bootcamp for Community College Faculty; CISA (Certified Information Security Auditor) Bootcamp for Community College Faculty; Powershell Scripting for Cybersecurity Professionals; Python Scripting for Cybersecurity Professionals; Introduction to Cybersecurity Professions; and Industrial Control Systems Security and SCADA (Supervisory Control and Data Acquisition). For the schedule, see http://www.cssia.org/cssia-training.cfm.
CSSIA has published over 300 lab exercises that can be downloaded and used in any classroom. These labs are also available in the CSSIA Virtual Teaching and Learning Environment. For access to this environment, contact John Sands at sands [at] morainevalley.edu (sands[at]morainevalley[dot]edu).
In July 2017, CSSIA will host a US Cyber Challenge summer camp.
CYBERWATCH WEST (http://www.cyberwatchwest.org)
In April 2017, the National Security Agency and Department of Homeland Security designated Whatcom Community College, home of CyberWatch West, as one of four CAE National Resource Centers (CNRCs). In this role, the center will focus on mentoring and will lead the CAE-CD Application Assistance Program, guiding university and college administrators and faculty through the rigorous application process for the CAE-CD designation.
CyberWatch West will assist Highline College in Des Moines, WA, in hosting the first International Collegiate Cyber Defense Invitational (ICCDI) competition on June 20-22, 2017. This competition is modeled after the U.S. National Collegiate Cyber Defense Competition. To date, higher education institutions from Indonesia and Namibia, as well as two U.S. universities (the University of Central Florida and Brigham Young University), have committed to participate.
CyberWatch West will sponsor the National Centers of Academic Excellence Virtual Career Fair on October 13, 2017. This online job fair will connect students from CAE-designated schools to employers looking to fill internships, part-time positions, and full-time positions. The event will take place from 8:00 a.m. to 11:30 a.m. PDT. Employers interested in participating should e-mail cyber [at] csusb.edu (cyber[at]csusb[dot]edu). Participation is free. Registration for students from CAE-designated institutions will open on the CAE Community web site (https://www.caecommunity.org/) in July 2017. Students will also have an opportunity to participate in professional development activities prior to the job fair in order to strengthen their resumes and prepare for interviews.
CYBER SECURITY EDUCATION CONSORTIUM (CSEC) (http://cseconline.net/2014/)
CSEC will host an Industrial Controls Security (ICS) Summit on July 11-12, 2017, at Jackson State Community College. The purpose of the summit is to develop an advanced technical certificate program that will educate front-line technicians about how to identify the threats, exploits, and vulnerabilities that threaten ICS network infrastructures and how to apply countermeasures to thwart potential cyber-attacks.
National Centers of Academic Excellence in Cybersecurity
Twenty-two institutions were recently recognized by the National Security Agency and the Department of Homeland Security for meeting the requirements of the National Centers of Academic Excellence in Cyber Defense (CAE-CD) Program at a ceremony on June 7, 2017 at the National Cyber Summit in Huntsville, Alabama. An additional ten institutions will be recognized at a ceremony at the NICE conference in November 2017. This brings the total number of institutions participating in the National CAE-CD Program to 226, located in 45 states, the District of Columbia and the Commonwealth of Puerto Rico. The NSA/DHS Cyber Defense programs are designed to encourage more U.S. academic institutions to educate future cyber warriors. A full list of CAE-CD designated Institutions can be found at https://www.iad.gov/NIETP/reports/current_cae_designated_institutions.cfm
Learn more at www.caecommunity.org
The GenCyber Program, sponsored by the National Security Agency and the National Science Foundation, offers free cybersecurity summer camps to K-12 students and teachers at universities across the Nation. The program intends to generate more awareness and interest in cybersecurity.
Learn more about the camps at www.gen-cyber.com
NICE Cybersecurity Workforce Framework
Comments on the 2016 NICE Framework draft were gathered through January 6, 2017, and NIST Special Publication 800-181 (Rev. 1), the NICE Framework, will be published in June 2017. Concurrent with the publication, additional resources will be posted around the NICE Framework including a description of the revision process.Learn more here.
The U.S. government provides funding to third parties to develop products that will help advance cybersecurity education, training, and workforce development needs. The following are a few of those projects.
NICE Challenge Project
The NICE Challenge Project has officially reached a major milestone. It now has over 100 officially registered educational institutions in the United States. Having reached that milestone easily right at the start of the 2017 cybersecurity education conference circuit, it is well on its way to reaching 150+ by the end of the year. Of the conferences being held this year, the representatives of the project are now officially attending and speaking at the following events: National Cyber Summit, IAS, 3CS, & the NICE Conference.
The project is also expected to have some major releases this summer including the official 1.0 release of its web application, bringing it out of beta, as well as a new challenge environment. As of the end of spring, there are 60+ challenges available within the Operate & Maintain challenge environment. Development and content decisions are driven not only by our strategic vision, but by the extremely valuable feedback we receive from our growing user base, whom we are privileged to work with on this journey forward in creating the next generation in hands on cybersecurity content.
Learn more at www.nice-challenge.com
The CyberSeek team is in the process of a scheduled update. CyberSeek will soon include certification data from GIAC and will be refreshing the job posting data. Since its November, 2016 launch, CyberSeek.org has received over 100,000 unique page views, reflecting the site’s growing presence as a go-to resource for cybersecurity jobs supply/demand analysis and career path guidance. During this time period, there were 640 press mentions of CyberSeek, reaching a potential audience of 13.2 million.
Learn more at www.cyberseek.org
National Integrated Cyber Education Research Center
The landscape of K-12 cyber education continues to evolve with a monumental importance for building the fundamental knowledge, skills and abilities of today’s students for tomorrow’s growing cyber workforce. The Department of Homeland Security Cybersecurity Education Training and Assistance Program (CETAP), in partnership with the Cyber Innovation Center and its National Integrated Cyber Education Research Center (NICERC) continue to positively influence the K-12 classroom through project driven, cyber-based curricula and professional development programs for teachers in order to begin systematically empowering educators with the resources needed to prepare our students and our future workforce. These resources, available to every K-12 educator at no cost, span across the county with teachers from all 50 states accessing and integrating the curricula into their classrooms. In addition, partnerships with state departments of education are being solidified to seamlessly integrate concepts of cybersecurity into existing math, science and liberal arts state-level standards.
Learn more at www.NICERC.org
Regional Alliances and Multi-stakeholder Partnerships to Stimulate (RAMPS) Cybersecurity Education and Workforce Development
The RAMPS groups met at the National Cyber Summit on June 7, 2017 in Huntsville, Alabama to discuss accomplishments and planned efforts for their programs. Some of these are described below in each group’s summary. The groups also participated in a panel session during the Education and Workforce Development Track at the conference to provide the audience insight into how they are building successful regional partnerships and take questions from the audience.
THE PARTNERSHIP TO ADVANCE CYBERSECURITY EDUCATION AND TRAINING (PACET)
One of PACET’s many initiatives under the RAMPS program is to develop and provide C-suite training this summer to improve understanding of different elements of cybersecurity to better meet security needs of organizations. PACET is also actively involved in higher education and K-12 initiatives such as virtual labs, course mapping to the NICE Cybersecurity Workforce Framework, and week-long cybersecurity camps.
Learn more at www.albany.edu/facets
THE HAMPTON ROADS CYBERSECURITY EDUCATION, WORKFORCE AND ECONOMIC DEVELOPMENT ALLIANCE (HRCyber)
HRCyber has been helping to promote cybersecurity career awareness through Cyber Saturday activities. By hosting Cyber Saturdays at partner community colleges, HRCyber has brought together high school students and parents to teach them about education pathways as well as participate in hands-on technical activities. Learn more about HRCyber’s coordination with local institutions and industry at their website below.
Learn more at www.securitybehavior.com/hrcyber
CINCINNATI-DAYTON CYBER CORRIDOR (Cin-Day Cyber)
The Southwestern Ohio collaboration are actively engaged with their local industry organizations in bringing them together with local cybersecurity talent pools. Recently, the group sponsored an event with the Air Force Institute of Technology to bring employers to a platform where students could present their research and findings to them. The group had also hosted mixers and other events with local educational institutions and their career services departments.
Learn more at www.soche.org
CYBER PREP PROGRAM
The Pikes Peak regional cybersecurity alliance has been hard at work implementing certificate programs in their community college programs and in local high school districts. The program is also working with local students and companies to coordinate paid internships. A pilot of this program showed interest from 44 students. Learn more about the Pikes Peak Cyber Prep program and how they’re supporting hands-on learning, apprenticeship programs, and more at their website below.
Learn more at www.ppcc.edu/cyberprep
THE ARIZONA STATEWIDE CYBER WORKFORCE CONSORTIUM
The consortium has been busy promoting cybersecurity career awareness in their region through hosting local security competitions, providing talks at Comic Con, offering workshops at local high schools, and more! They’ve also been coordinating with the local YearUp program and Registered Apprenticeship program to help prepare students in joining the cybersecurity workforce.
Learn more at www.ArizonaCyber.org
The NICE Working Group (NICEWG) continues to work toward identifying and producing deliverables that energize and promote cybersecurity education, training, and workforce development. For example, the Competitions subgroup recently created a “Ten Things Parents Need to Know about Competitions” letter that provides an overview of cybersecurity competitions and describe the benefits of young people participating in them. The Competitions group is actively seeking input on interests and accomplishments in competitions.
Discussions on projects like these and more take place monthly in each of the following five subgroup areas: K-12, Collegiate, Competitions, Training and Certifications, and Workforce Management.
Learn more about the NICE Working Group or sign up to participate in the NICE Working Group at the Working Group’s website.
Cybersecurity Education and Workforce Development Stakeholder Engagement Program August 1, 2017
NIST is soliciting applications from U.S.-located, non-Federal entities to assist NICE in its outreach efforts to the cybersecurity education, training, and workforce development community. NICE seeks to provide assistance to an organization engaged in building national (and exploring international) relationships to further advance outreach with a year-round communication strategy and capping that engagement by planning and holding the NICE Annual Conference in the continental United States for up to the next five years.
The deadline to apply for this funding opportunity is August 1, 2017.
NICE Annual Conference & Expo 2017 November 7-8, 2017
The 8th annual NICE Conference and Expo will be held on November 7-8, 2017 at the Dayton Convention Center in Dayton, Ohio. This year’s theme, "Challenging the Status Quo: Building a Robust and Sustainable Cybersecurity Ecosystem," aims to help shape the way in which the nation identifies, educates, trains and builds our 21st-century cutting-edge Cybersecurity Ecosystem. The conference will feature three tracks in the following areas:
The conference will also feature the following 3 pre-conference seminars on November 6, 2017:
Learn more and register at www.fbcinc.com/nice/
NICE K-12 Cybersecurity Education Conference December 4-5, 2017
Save the date for the NICE K-12 Cybersecurity Education Conference! The conference will be held on December 4-5, 2017 in Nashville, Tennessee. The conference will convene thought leaders from education, government, industry, and non-profits to address how K-12 education is uniquely positioned to accelerate learning, increase skills, development, identify methods to best nurture a diverse learning community, and provide approaches to guide career development and workforce planning for today’s youth.
Learn more at www.k12cybersecurityconference.org/
NICE webinars are free to attend, but registration is required.
Learn more, view webinar recordings, and more here.