Thursday, August 2, 2012

If you're in IT, this is seriously cool

The Air Force sponsors a High School cyber defense program called CyberPatriot, where schools form teams of students who compete with other teams in a NCAA-style March Madness where the kids have to secure a set of computers and an Air Force Red Team attacks:
CyberPatriot is the premier national high school cyber defense competition that is designed to give hands on exposure to the foundations of cyber security. CyberPatriot is not a hacking competition. CyberPatriot's goal is to excite students about Science, Technology, Engineering, and Mathematics (STEM) education.
The Competition
In each competition round, students are provided one to three virtual machines. These machines contain several vulnerabilities, and students must clean the image of them. The virtual machines can have Windows or GNU/Linux Operating systems. They are given a set amount of time on the competition day to do so. Teams that find the most vulnerabilities pass on to the next round, and the winners of all three rounds compete in the National Championships in Washington, D.C.

Here's what's cool: the skills that the kids learn are basic IT administration, with an emphasis on security.  Passwords, patches, configuration settings.  There's a curriculum downloadable from the CyberPatriot web site, but the contents will be familiar to anyone who's in IT.

But dig this: while you have to actually be a teacher at the school to be a coach, the system relies on "mentors" who volunteer from the community.  Anyone can do it, although they'll do a background check on you.  I'm trying to talk #2 Son's JROTC commander into signing up.

So here's a chance for you to help out the local kids.  IT security is a growing field, and even if the kids don't go into the Service, there are a lot of jobs out there.

4 comments:

  1. That is a good program, goes hand in hand with STEM that the Navy is doing!

    ReplyDelete
  2. So it's like virtual Capture the Flag? Sweet. I was never any good at the real thing.

    ReplyDelete
  3. Speaking of IT, have you seen this yet?

    If they're supposed to be "secure" computers, why the frak do they have internet access? And, if internet access is necessary, why is it not "whitelisted addresses only"?

    #securityfail

    ReplyDelete
  4. ifconfig eth0 down

    I win. :)

    ReplyDelete

Remember your manners when you post. Anonymous comments are not allowed because of the plague of spam comments.