Hello All,

I'm going to be having the opportunity to teach a cool course covering A+, Net+ and Sec+ soon. I'm comfortable with all the content and we will be using CompTIA materials, but I wanted to get some input / feedback from all of you A+ instructors (I'm looking at your @Walt Jaqua among others ) on what you think is minimum ideal equipment. Plus just any input on cool lab ideas would be appreciated too (Walt you've given me pretty of these from your amazing TTT ). I know the CompTIA materials list equipment for their labs, etc. But what else should we cover and what else would we need equipment wise to do so? If you are using materials that aren't CompTIA that is totally cool too, I would still very much love to see what you think is needed, equipment and lab wise. Heck, if you are using a different set of materials and it comes with an equipment list, please share with me! I thank any and all in advance for their input!

Lee

Back in the late 1990s I use to write articles for WindowsNT Magazine, and they actually paid me for content. Those days are a distant memory, in terms of getting paid. But I love to write, and it helps add credibility to both my teaching and the administrative aspect of my job with the California Community Colleges. Hence the reason I suggest IT trainers consider authoring an occasional article.

Wanted to share the attached article that I recently wrote, and included a reference to the CIN, as I wrote:
In a recent posting on a closed forum for CompTIA instructors, one of their executives posed the following question: Did you know out of the 129,397 total U.S. Cybersecurity job postings during Q1 2019, Project Management was rated #4 as a top specialized skill?

While the article titled "A Cybersecurity Job Seeker’s Guide to Employment" contains what I think is useful information for those seeking to enter the field, what I think was equally important is the need for cybersecurity professionals to hone their project management skills. Hence a push towards the Project+ certification. If you do not have that certification, you need to get it and start teaching it.

Steve

CompTIA is looking to hire a best-in-class contract instructor to teach a class in Charlotte, NC.

This is an 8 week, in-person class covering A+ and Career Readiness.

Please reach out to Joelle Szyszka Manager Training Operations at [email protected] if you would like to know more!

*There is opportunity for this to be a retained trainer contracted position.

Joelle Szyszka | Manager, Training Operations
Cell: 630.270.7128 Office: 630.678.8456 | CompTIA.org
Get the latest IT business and career advice from CompTIA.

Was such a busy summer I missed this when it first came out. Great to see @comptia Network+ and Security+ on this list. Hope to see PenTest+ there soon.

Greetings, we are trying something new! Recently CompTIA held two Mini Bootcamps at TechNet Cyber - Cloud+ and CASP+. We recorded these sessions and are making them available "on demand" (no charge). There are two sessions (75 min each). Each worth 1 CEU.

Registration Link

Description:

CompTIA, General Dynamics Information Technology and Palo Alto Networks present a preview of the CompTIA Cloud+ and CASP+ certifications, and how these certifications include the technical skillsneeded to migrate, maintain and secure a cloud environment. This 3-hour recording includes a demonstration of milCloud® 2.0 and tools used to keep it secure.

The mini bootcamp recording covers:
• Skills needed to support milCloud® 2.0 in Cloud+ and CASP+
• A demonstration of DISA’s milCloud® 2.0 environment and infrastructure
• In-depth tools demo with Palo Alto Networks on securing a cloud environment

1 CEU can be earned per session

Approved for A+, Network+, Security+, Cloud+, Linux+ and CASP+

Found a quality resource for courses that were "funded through DHS/FEMA's Homeland Security National Training Program and are offered at no cost." You can find these resources at:
https://teex.org/Pages/Course-Catalog.aspx?catID=603&level=1&catName=DHS/FEMA-Funded

The good news is I believe, based upon a short review of one of the courses (AWR173), course content is excellent. There appears to be a limitation on who can take the courses. While it is clear that U.S. citizens can use the courses, it is not clear that the same would be true of legal residents. Access to courses requires obtaining a FEMA Student ID (see https://cdp.dhs.gov/femasid/register ). Information sought includes birth date and birthplace. Recalling that FEMA is a division of DHS, as are a variety of immigration service divisions (e.g. ICE, etc.). This raises interesting issues with the California community college system. California residency is likely more broadly defined than the Federal definition of legal residency (see for example https://web.peralta.edu/admissions/registration-information/residency-requirements/#nav).

So the California question, where equal access is a rule, is can we utilize these resources for community college students?

I'm sharing the email string below (shown in reverse order), because I think it shows a great opportunity for IT instructors, students, and practitioners, as a way of getting back through participation in the ITDRC (www.itdrc.org). I'd encourage you to consider joining and sharing this information with your colleagues and students.



From: Linthicum, Steve
Sent: Monday, September 9, 2019 8:12 AM
To: [email protected]; West, Tobi; Santoyo, Sarah
Subject:Fw: ITDRC

Wanted to share this with you. As you know, when I do the interview with students wanting to participate in the CCAP apprenticeship program, I strongly suggest they get involved with a list of organizations (Infragard, ITDRC, etc.) as a way to network with cybersecurity professionals and build their resume. I'm asking Certification Magazine to accept an article that will relate to ITDRC and want to include our suggestion that apprentices join this volunteer organization.

Given what we've seen on last week's news, I've made the decision to meet the requirements associated with deployment (see attached completion certificates), and with the permission of RSCCD (hence the inclusion of Sarah), seek deployment relative to this recent disaster. I have enough unused vacation leave to do this.

Steve

Steve Linthicum, JD, CISSP
Professor Emeritus
Orange County Region Director - Industry Engagement
Information and Communications Technologies / Digital Media
Powered by California Community Colleges
(916) 300-7602
Email: [email protected]
https://ictdmsector.org/

From: Linthicum, Steve
Sent: Monday, September 9, 2019 7:51 AM
To: Certification Magazine Editor
Subject:Re: ITDRC

Probably based upon watching the news relating to the Bahamas, this weekend I went through and completed the requirements associated with deployment (see attachments and the email below). I view this as a great opportunity for volunteer service, and those having the IT-related skills need to consider. Hence the reason I'm suggesting writing an article.

Steve Linthicum, JD, CISSP
Professor Emeritus
Orange County Region Director - Industry Engagement
Information and Communications Technologies / Digital Media
Powered by California Community Colleges
(916) 300-7602
Email: [email protected]
https://ictdmsector.org/

From: ITDRC <[email protected]>
Date: Wed, Sep 4, 2019 at 6:35 PM
Subject: ITDRC - Deployment Availability Request - Hurricane Dorian (Bahamas)
To: [email protected] <[email protected]>



Team-

We are exploring a deployment to the Bahamas to provide humanitarian assistance to communities impacted by Hurricane Dorian, and calling for a second set of availability submissions.

If you are interested, available, and meet all of the requirements outlined below, please submit your availability for the next 4 weeks through the Deployment Availability form. We will tentatively staff this mission on 10 day rotations for a minimum of 8 weeks, so it is important that you keep your availability updated. If your availability changes after submission, please submit the form again, as your later submission will supersede the previous one.

The following criteria must be met to be eligible for international field deployment:

• Completion of ITDRC-100
• FEMA IS-100
• FEMA IS-700
• Code of Conduct Acceptance
• A Valid Passport
• Health Insurance
• Availability of 9-14 contiguous days

Registering availability does not guarantee deployment. Stand by for further information from the mobilization team if you are selected for deployment. Deployment selection is determined based on many different factors, including proximity and travel routes to affected area, dates and length of availability, and skillsets required.

NOTE: If you have already registered for our domestic response to Hurricane Dorian, you will need to submit availability for the Bahamas response. Remote support team members will be selected from the domestic availability pool.

Reminder: If you are a part of an employer sponsored team, please check with your program managers before submitting availability.

ITDRC

Good Morning All,

I am currently looking for an instructor (or multiple instructors) who can teach on ground in Spokane, WA for the CompTIA pathway certs (starting with IT Fundamentals). OR I am looking for online-instructor led CompTIA certs as well, someone who may have developed an online format of classes or is open to developing this. Please direct message me at [email protected].

Thank you,

Alissa Munoz
Operations Manager
Community Colleges of Spokane

I found the following list of podcast resources available from CompTIA that are worth getting the word out about. One of our key efforts with the California Community College Chancellor's Office is to increase the diversity of our IT/cybersecurity workforce. Noting one of the podcasts is titled "Women Techcast", I will be letting faculty in this sector about this resource (and all of the other podcasts). You can access the resources by pointing your browser to:

Just a friendly reminder if you are still preparing, or have students preparing for Linux+ LXO-103 & LXO-104, the exam retirement is October 1st. Be sure to have both exams completed by the expiration date. There will not be any extensions available.

Maltego will not allow login. I get a 404 error; The Login Server could not be contacted. Is there a fix for this please?

I have the CySA Instructor Guide and labs, but the PowerPoint link in the Instructor Links for the file named G187eng-instructorlinks_for_download_from_OCM.docx takes me to a download for the Security+ course PPTs and other Sec+ data. Can someone please point me to the correct link for the PPTs for CySA+?
regards, Terry

One of the goals of this forum is to provide suggestions for available resources that can be used in the classroom. Listed below are resources you might consider using. The individual providing the resources to me and others at the National University "program advisory committee" meeting yesterday was Professor Chris Simpson. Hopefully, you will find them valuable:

========================================

Check out the following that is free for students having a .edu email address:
https://www.immersivelabs.com/digital-cyber-academies/

Cyber Ranges
https://github.com/Cyb3rWard0g/mordor
https://github.com/clong/DetectionLab
https://github.com/secdevops-cuse/CyberRange

Some CTF’s NU students built. Please note the links use self-signed certs. Feel free to send feedback too:

https://13.57.56.130
http://cyberstrategyctf.com/

Earlier this year I took the beta exam for this somewhat neglected certification. I thought it was very useful, particularly for that segment of our world that do not necessarily need to be quite as geekish as some of us are, but need to understand cloud basics so they can be effective in making business decisions relative to how the cloud is going to be effectively implemented in their company. I'm looking at championing a grant driven effort that will do much the same as we have done for the ITF+ certification. Along those lines, the effort may well include the development of learning resources that will be public domain and available in a Canvas LMS importable file.

Where I see this "non-geekish" certification fit is for students receiving the ITF+ certification, the Cloud Essentials+ certification, and the AWS Practitioner certification. These three certifications I think would be valuable for that cloud salesperson who needs to have a general understanding of what the Cloud is all about, but not necessarily the depth of understanding required for someone in a technician role. Additionally, it would be valuable for someone in a cloud consumer decision-maker role. I'd appreciate your thoughts......

Any Update for new certification of CompTIA ?

Think the subject says it all but will repeat it here: Any news on when Server+ gets it's update?
Lee

The places I currently work don't actually emphasize or include CASP+. I liked the exam myself and find it a solid, advanced-level, technical Cyber Security cert, but was curious where it fits into various programs out there. Any input/feedback much appreciated.

Hello all,

Given that understanding and interpreting logs is a critical skill needed to pass the CySA+ exam, I was curious how others are teaching log analysis. I tend to use GNS3 and/or stand-along Virtual Machines and have some activities where I have folks interact with server processes (http, mail, ssh, etc.) and watch the logs. I also like to have my students run basic attacks from one appliance and watch the logs in real-time on the target appliance as the attacks play out. What is everyone else doing in this area?

Here is a link for a Linux tutorial for those interested in Pentesting. This tutorial was originally posted by a participant in the Linux Huddle Slack Channel so it it looks familiar that is why. The tutorial focuses on installing a virtual machine, Kali Linux and working at the command line. It is a good primer to Linux, though someone would not be a pentester once you complete the tutorial. But a good set up to those going through the PenTest+ course that need a little help with Linux.

Linux for Ethical Hackers (Kali Linux Tutorial)

In conjunction with a grant funded project I administer, we had two community college full-time faculty members and one high school teacher create learning content that relates to the CompTIA ITF+ exam objectives (FC0-U61). The content is accessible in the form of a Canvas LMS file that can be imported into Canvas. Since this is grant-funded it is open-source relative to public use. The problem that we recently encountered is having content that needs to be corrected. We are looking at ways to do it. My thought, and I'd like feedback is to create an errata (sheet of errors) that would identify the date of listing and information relating to the change that needs to be made (e.g. correct an answer on a quiz). The errata document would be on the web page where the content file would be downloaded.

While we would periodically update the master Canvas file, those using the file would need to periodically check the errata sheet to see if they need to make changes to the course content they are using or reusing.

If you want to look at the learning content, use it, or help us identify issues, you can download the file at the following site:

Once on the site, scroll down near the bottom to the area identified as "Descriptions and Links" and open the plus (+) sign next to "Open Source Dual Enrollment Canvas Package." You will then be able to download the file by clicking on the link. If you need a free Canvas teacher account where you can upload the course for use, set up a Canvas account at:

I know many academic institutions utilize the Cisco Academy as a resource for content for the CompTIA A+ certification. As many of you are aware, Cisco made some changes to its certification program, eliminating the CCENT certification, and changing its CCNA certifications, as detailed in its website. As an instructor, I believe we need to be well versed in having an understanding of different certification paths so we can answer student questions. I know I have unanswered questions relative to the program changes that become effective February 24, 2020. I wanted to let you know that a webinar is currently scheduled for September 6th. Information about the webinar, coupled with a link to the registration page, is provided below. It should be interesting and I'd encourage attendance.

Cisco Update: A New Streamlined Certification Program
Have you heard about the changes to the Cisco Certification Program? Greg Coté, Product Manager at Cisco will discuss the updates in detail and Richard Grotegut, ICT-DM Regional Director will share how the new CCNA ties in with the CCC curriculum.

? We've compiled a collection of Linux articles from CompTIA "guest bloggers" around the globe ?

For your reading pleasure: https://online.flippingbook.com/view/468423/


Table of Contents:

Below is a link that relates specifically to a meeting where faculty and industry will be at the table discussing where IT learning content should be directed. I'd encourage both industry and educators to participate in the discussion, as I think it centers on where we are today, and where we will need to be in the future. I will be attending the California session. There is also one in Texas. Travel and lodging reimbursement is available as detailed in the registration form. Please consider attending or spreading the word, particularly to potential key industry representatives.

IT Skill Standards 2020 and Beyond (https://events.r20.constantcontact.com/register/eventReg?oeidk=a07eghhuyd4038902be&oseq=&c=&ch=)

P.S. Yes, Stephen, Tazeen, and other CompTIAites. CompTIA should be represented at the discussions.

I wanted to share with you the content of an email I sent to a group of students I had the pleasure of teaching last week, as I drove forward the idea of not being afraid to take the CompTIA Security+ certification exam. While content knowledge is important, my experience is students stand a better chance of success if they are relaxed during the exam, adopting an approach that includes both time management and "intelligent guessing" as detailed in a posting on my blog. Here is the email content:

SUBJECT: Comparison: Certification Exams and Eating Dinner

When you go to a good restaurant and look at the menu, you are basically planning for the next 90 minutes. A quality meal will have an appetizer, main course, and a dessert. All this, if you so desire, can be followed up with an after-dinner drink. How about, based upon the information provided below, you approach your exam in the same manner?

The appetizer is that first pass through the questions. Those performance-based questions are more challenging to digest so they will be part of the main course and will be skipped. Eat only those questions that are your favorites, leaving the less tasteful for dinner (your second pass). Where you sense that an item is could either be an appetizer or could be eaten with the main course (you are reasonably sure you know the correct answer but might change your mind), don't be afraid to give it a bite (answer the question), but be sure to keep it at the table (mark it) because you might want to eat it later.

On to the main course. Here you are relaxed, cruising through the meal. It is where, with the exception of the PBQs which should be saved for dessert, you answer those questions that you have not answered.

Dessert is a pleasure. Pleasure starts with those tasteful and satisfying PBQs. Make sure that you have plenty of time for the PBQs. That will only happen if you have moved through the appetizer and main course in a fairly rapid manner. Take as much time as is available for the PBQs, not rushing but savoring their taste.

When you are done it is time to consider having an after-dinner drink. Me, I don't drink so it is time to signal that I'm done and get up from the table. Some of you may choose to drink, and that's OK as long as you remember at the end of the meal, blood flow is directed away from your brain and distributed to your digestive system to deal with what you've eaten. So be careful changing your mind (and answers to questions).

That's pretty much it. Enjoy the meal and remember, if you don't know an answer, guess intelligently.