Mobile App Security

  • Subscribe to our RSS feed.
  • Twitter
  • StumbleUpon
  • Reddit
  • Facebook
  • Digg

Monday, 30 September 2013

U.S. Agencies Revamp Standards for Cybersecurity Program

Posted on 14:27 by Unknown
September 30, 2013, Chronicle of Higher Education


John Lew for the U. of Tulsa
Computer-science students at the U. of Tulsa defuse a simulated bomb.


By Megan O'Neil

Nearly 200 college and university cybersecurity programs will have to reapply for a coveted federal designation under new curriculum standards being rolled out by the National Security Agency and the U.S. Department of Homeland Security.

The retooling of the joint National Centers of Academic Excellence program includes the elimination of dated, controversial federal training standards. They are being replaced with curricular blocks, dubbed "knowledge units," that officials say will enable colleges to develop cybersecurity focus areas while also allowing them to respond to employers' needs in a fluid marketplace.

There are currently 181 cyber­security programs with the designation at two- and four-year institutions, teaching everything from introductory programming to offensive hacking techniques. The label can be a game changer, attracting money, students, and prestige, according to some college officials.

The program's revamping coincides with intense public scrutiny of the cybersecurity field in the wake of disclosures made by Edward J. Snowden, the former Booz Allen Hamilton contractor, about government surveillance. It also comes as government officials, educators, and private companies wrestle with how best to educate the right number of workers with the right skills needed to protect critical infrastructure, economic interests, and personal data in an increasingly networked world.

"Every cybersecurity professional that comes out of college and takes a job is a win for the government, whether they work for John Deere, Boeing, or Target," says Robin (Montana) Williams, branch chief of cybersecurity­-education awareness at the Homeland Security Department. The country is at a critical juncture "as to where we go next in a world that is interconnected and in which cybercrime globally costs us $388-billion a year. We are losing intellectual property. We are losing our nation's work and our nation's vision and our nation's ingenuity because we are not able to protect it," he says.

While discussions of cyber­security may conjure images of self-taught hackers too engrossed in their computers to attend class, most government agencies and top security firms will not consider candidates without a baccalaureate degree. Colleges are not producing them quickly enough, according to work-force studies.

"There is a real need­—that is clear," says Diana Burley, an associate professor at George Washington University who helped write a recent National Research Council report about the professionalization of the cybersecurity field. "What is less clear is exactly what that need is both in terms of the overall number and in the particular areas of the work force that we have to produce people to fill."

The academic-excellence program was started by the NSA in 1998 in an early attempt to widen the pipeline. The first seven university­-level programs were certified in 1999.

Homeland Security became a partner in 2004. Community colleges were added in 2010, and are now 33 of the 181 designees.
'Centers of Adequacy'?

The Centers of Academic Excellence label has the power to put colleges' cybersecurity programs on the map, educators say. It differentiates them in marketing materials and attracts employers to campuses. Students and programs are eligible for tens of millions of dollars in federal scholarships and grants, many administered by the National Science Foundation. Corrinne Sande, head of the Cybersecurity Center at Whatcom Community College, in northwestern Washington State, says that acquiring the designation in 2011 was "the best thing we ever did."

"It increased my enrollment quite a bit," Ms. Sande says. "Many students have told me the only reason they came to my college is because of the designation."

Still, the academic-excellence program has faced criticism. The former training guidelines, called the Committee on National Security Systems standards, were a lightning rod. Unlike educational standards, they prescribed teaching students how to execute specific technical functions.

Critics argued that the standards were an inappropriate fit for academe. Others said that the NSA and the Homeland Security Department diluted the value of the academic-excellence designation by awarding it to too many college programs, among which the quality of resources and education varies widely. One of the most prominent critics has been Eugene H. Spafford, executive director of the Center for Education and Research in Information Assurance and Security at Purdue University. His was one of the original seven to qualify for the federal designation.

"The program at this size is actually a Centers of Adequacy program," Mr. Spafford, known to many as "Spaf," wrote in a much-quoted blog post in 2008. "That isn't intended to be pejorative. It is simply a statement about the size of the program and the nature of the requirements."
Rapid Change

In the fall of 2012, the NSA and the Homeland Security Department started a yearlong process to replace the old standards, soliciting feedback from educators and industry representatives. The new "knowledge units" include a core curriculum as well as additional, optional units that colleges can adopt to develop specialties such as cyberinvestigations, data-security analysis, health-care security, and systems-security engineering.

"Our intention is to continually update the program so that students are always presented with material that is cutting-edge," Denisha Jackson, who heads the Centers of Academic Excellence program for the NSA, says in an e-mail. "The knowledge-units concept will be much easier to update as government, industry, and academia identify needed changes."

Programs that now have the academic­-excellence label are not guaranteed to retain the designation—they must reapply. NSA officials say they have set a rigorous schedule to process all of the redesignation applications and make site visits by December 2014 before they begin accepting new applicants.

Many observers say that the changes are a step in the right direction. "First, they are upping the bar," says Sujeet Shenoi, founder and director of the University of Tulsa's cyber-operations program, one of the most prestigious in the country and one of those carrying the academic-excellence designation. "They are making it more intense. The second thing is, this is a field that changes drastically, and of course we need to update."

Still, others say the changes fall short. Fostering quality in cyber­security education requires additional resources such as laboratories and teaching materials, Mr. Spafford said. The government should also consider subsidizing teaching salaries to draw top-flight professionals who can earn twice as much at a private company as in a classroom.

"It is an aspirational goal; it is not a recognition of reality," Mr. Spafford said of the academic-excellence designation. "It is not bad to have an aspirational goal, but the resources to actually move in that direction and strengthen the schools that have the designation have been lacking all along."

Others say that tension continues between those who want to see emphasis placed on purely technical education and those who favor an interdisciplinary approach.

"I definitely see this as long-­overdue change," says Victor Piot­rowski, who in his role at the National Science Foundation helps oversee millions of dollars in annual spending on postsecondary cybersecurity education and work-force development. "The step is in the right direction, but the big question is, is it going to be executed effectively? We will see in a couple of years how it works out."
Email ThisBlogThis!Share to XShare to FacebookShare to Pinterest
Posted in ICT Education, James Jones, Security, Workforce Development | No comments
Newer Post Older Post Home

0 comments:

Post a Comment

Subscribe to: Post Comments (Atom)

Popular Posts

  • LearningWorks: THE MISSING PIECE: Quantifying Non-Completion Pathways to Success
    ” . . . in the California Community College system . . . nearly one-third of students took an average of just two courses over about two yea...
  • Cisco Career Certifications Awarded American National Standards Institute Accreditation
    Achievement Demonstrates Compliance With Rigorous, Internationally Recognized Standards SAN JOSE, CA--(Marketwire - Jan 16, 2013) - Unders...
  • CyberWatch West Free Student 2 Student Webinar October 30th
    Online Workshop Oct 30 at 10:30 am PDT Man-in-the-Middle Attacks Using Mobile Devices Register @ cyberwatchwest.webex.com Student 2 Student ...
  • Spring 2013 NEW CCCApply Webinar Series
      Monday, 28 January 2013, TechEDge Written by Tim Calhoon Saturday, 26 January 2013 The New CCCApply online admissions application...
  • Community college grads out-earn bachelor's degree holders
    By Jon Marcus at The Hechinger Institute @CNNMoney February 26, 2013: 6:23 AM ET Nearly 30% of Americans with associate's degrees now ...
  • ACM CCECC Alice Summer Workshops Registration now open
    Registration has opened for the Alice Summer Workshops! A week has been set aside for a Community College focused workshop at Walt Disn...
  • CA Career Cafe: CALJOBS Job Search Service Now Available
    “ Somewhere someone is looking for exactly what you have to offer. ”                                                                    - ...
  • Code.org Launches To Help Make Computer Programming Accessible To Everyone
    Drew Olanoff ,  TechCrunch       Drew Olanoff has over 10 years of marketing, PR, customer service and support, relationship buildin...
  • EDGE goals addressed in 2013-14 California State Budget
    California's 2013-14 State Budget and an accompanying trailer bill, AB 86, address key EDGE goals of 1) beginning to restore dedicated f...
  • NCRIC Cyber Internship Program
    Northern California Regional Intelligence Center Cyber Internship Program Northern California Regional Intelligence Center (“NCRIC”) Mission...

Categories

  • Big Data
  • CATV
  • CENIC
  • Certifications
  • Cloud
  • Computational Thinking
  • Computer Engineering
  • Computer Science
  • CTE
  • Database
  • Digital Divide
  • Digital Literacy
  • Digital Media
  • Diversity
  • Educational Technology
  • elearning
  • Electronics
  • Entrepreneur
  • ethics
  • funding opportunity
  • Gaming
  • GIS
  • Grants
  • Hacking
  • Healthcare IT
  • ICT Applications
  • ICT Core Competencies
  • ICT Education
  • ICT Infrastructure
  • ICT Jobs
  • ICT pathways
  • ICT Regulation
  • ICT Research
  • Industry News
  • Innovation
  • Internships
  • James Jones
  • K-12
  • law
  • Linux
  • Mobility
  • MOOC
  • MPICT Announcements
  • Multimedia
  • Networking
  • networking security
  • Olivia Herriford
  • Open Source
  • Operating Systems
  • Pierre Thiry
  • Piracy
  • Public Policy
  • Security
  • Security; Identity Management
  • Smart Grid
  • Social Media
  • Soft Skills
  • Software Assurance
  • Software Engineering
  • Spanish
  • STEM Education
  • Storage
  • Teaching and Learning
  • Telecom
  • Tools
  • virtualization
  • Web
  • WIB
  • Wireless
  • women
  • Women in ICT
  • Workforce Development

Blog Archive

  • ▼  2013 (418)
    • ►  November (41)
    • ►  October (53)
    • ▼  September (44)
      • Why we hate the new tech boom
      • U.S. Agencies Revamp Standards for Cybersecurity P...
      • Digital Media Content & Technology Spend to Reach ...
      • USF opening $54 million science and innovation center
      • Hackbright Academy puts women coders in their own ...
      • Last Chance to Register for 2013 National Cyber Le...
      • 2013 IBM Master the Mainframe Contest Begins Octob...
      • Community College League of California - Remediation
      • MOUSE Squad Student Tech Leadership Program
      • Free Expanding Computing Education Pathways (ECEP)...
      • New California law will let minors digitally erase...
      • The Internet Is Important To Everyone Infographic
      • California Community College - Local Workforce Inv...
      • California Community College 2013 CTE Career Pathw...
      • Free 4-Day Juniper Training and JNCIA Certificatio...
      • Hackers Unite: Student Cybersecurity Teams Get a G...
      • San Francisco Hackathon September 20-22, 2013
      • Computer science major ranks No. 8 for salary pote...
      • Cybersecurity Field Not Ready to Be Professionaliz...
      • California Workforce Association: From Jail to Jo...
      • 5 Things I Learned By Turning Off My Smartphone Fo...
      • IT driving UK economy as skills gap widens
      • Udacity teams up with Google, AT&T and other tech ...
      • California Career Briefs: Get Soft Skills
      • National CyberWatch Center Sponsors 4th National I...
      • The State of Publicly-Funded GIS Data
      • National Cyber League (NCL) Registration Open Unti...
      • U.S. National Cyber Talent Search: Cyber Aces
      • Tablet Shipments to Exceed Personal Computers
      • Free Juniper 4-Day Course - $1700 Value
      • Internet S.O.S.
      • Convergence Technology Center (CTC) Summer Working...
      • National Cyber League (NCL) Registration Still Open!
      • Square Announces Code Camp for High School and Col...
      • Inside Hack Reactor, The Coding Bootcamp That Want...
      • California accelerates shift in student testing
      • Fed Says Tech Demand Outstripping Supply in Boston...
      • California Virtual Campus: 19,873 Online Courses;...
      • CCC Confer News and Resources
      • Kimberly Bryant at Black Girls Code Receives White...
      • CodeNow Launches Fall Trainings in the Bay Area. N...
      • StartSomethingToday.org Challenge to Inspire Stude...
      • California Career Briefs: Start a Conversation
      • Code for America on Why Civic Hacking Matters
    • ►  August (21)
    • ►  July (30)
    • ►  June (28)
    • ►  May (43)
    • ►  April (43)
    • ►  March (35)
    • ►  February (43)
    • ►  January (37)
  • ►  2012 (82)
    • ►  December (25)
    • ►  November (40)
    • ►  October (17)
Powered by Blogger.

About Me

Unknown
View my complete profile