Seeking Suggestions for Enhancing Student Engagement in Security+ Class

[M. Shehata]

Greetings,
I am preparing to start a new class for the Security+ certification and would like to ensure that students remain engaged, active, and participative throughout the course. While I am aware that there are labs included in the course materials, I am curious if you might have recommendations for additional ideas, tools, websites, or hands-on activities that could further enhance student involvement and enjoyment during the class.

Your advice or suggestions would be greatly appreciated.

 

[BrianFord]

Welcome M.Shehata!

I'm a big fan of active learning and always try to use different techniques to make sure my learners are and stay engaged. I try to mix up my methods offering some from within a lesson and others at end of a lesson. For the Security+ course a couple of ideas might be:

• Ask students to connect topics back to the CIA triad (Confidentiality, Integrity, and Availability),
• Ask the students to connect methods back to the Security Controls (categories and functional controls), and
• Something I call 'Where have we seen this before?' where learners connect topics (important to mastering compare and contrast questions).

I do demos using basic OS installed tools (Windows Event Viewer) and web browsers (examine the CompTIA.org site certificate in Chrome). I take students to the NVD to investigate CVEs and to the FIRST.org site to see a CVSS calculator.

I caution about using too many tools or visiting too many websites. Adult learners can only recall for or five things in a day. If you try to do too much in one day they may not be able to recall the topic the next day (but they may remember the site or the tool).

As far as learners hands on activities in Security+ I stay with the PBQs and Labs in CertMaster. I may walk through the Exploring the Lab exercise with a class but if it's not a bootcamp and time allows I try to organize small teams to complete a lab and then present it to the class. I use teams because if one person is leading a demo and goes blank or has a tech issue it becomes awkward and stops the learning for all. In bootcamp courses the students should do the labs on their own time. I try to fit in a walk through of the Vulnerability Assessment and Packet Capture labs.

I hope this helps.

Brian
.

 

[Mark Anthony Germanos]

Hi M. Shehata.

Kudos on choosing the best possible forum for that question. Hope to see you here often. I started training Security+ in June, 2023 and have polished my presentations to keep students engaged. Here are some items that may work for you.

1. Home network scan. When you get to the NMAP section, scan your network, share the results, then have students scan theirs. This could be in class or as homework. Have them record the results and then share them with the class. I am attaching a .PDF of an NMAP scan result that I copied and pasted into MS Word and then made beautiful. I usually introduce this task with "This is a fair and objective request you may see when interviewing for a job. Might as well practice here..." The CIN forum did not let me attach a .DOC :-(
2. Memory leaks. Show that many programs, including web browsers, open multiple processes. The challenge is to make sure all processes clear out of RAM when the user closes the hosting program. I open Task Manager then a) launch Firefox, b) visit https://online-stopwatch.com and c) exit Firefox. Students see how many processes Firefox opens and then see them clear out of memory within 75 seconds. Explain that if any Firefox processes remained up and running, that would be a sign of a memory leak.
3. Take them into AI. They've already chosen a favorite AI LLM. I take them in Perplexity then follow a progression of initial prompt and then a series of follow-ups. An example that is highly appropriate here is a) Tell me about the CIA, b) tell me about the CIA in cybersecurity, c) tell me about the CIA in cybersecurity at a 6th grade reading level... You can experiment with more specific prompts. Everybody pays attention.

Onward and upward.

 

[jarrelrivera]

Greetings,
I am preparing to start a new class for the Security+ certification and would like to ensure that students remain engaged, active, and participative throughout the course. While I am aware that there are labs included in the course materials, I am curious if you might have recommendations for additional ideas, tools, websites, or hands-on activities that could further enhance student involvement and enjoyment during the class.

Your advice or suggestions would be greatly appreciated.

As with any other courses, don't kill the students with powerpoint slides.

Security+ has lots of interesting topics, and the world has lots of news related to cybersecurity. Merge the two - theory and practical. In that way, the students will get to see the value of what is being discussed - and they get to remember the details more, in my experience.

You also don't need to do the talking for the entire time. There are good PBQs and quizzes in the CompTIA material. Let the students talk between themselves either in pair or in groups - depending on the amount of training time, that is.

The labs are good, only if the instructions are clear enough for the students to follow. So, I do recommend you running the labs yourself, then find the possible pain points for the students, so that in class, you can give an intro spiel about the lab, how it connects to the lesson, and what the students may learn or need to know in doing the lab, i.e. how to use Wazuh for the first time, or how to learn the various options for nmap.

There are heaps of tools and websites for Security+. Too many to identify. I suggest that you create threads for each question or topic that you'd need help with.

In any case, I hope this helps