Cybersecurity Analyst

Competency-Based Apprenticeship
Sponsoring Company:
CyberUp
Industries
O*Net Code
15-1212.00
Rapids Code
2050CB
Req. Hours
0
State
DC
Created
Apr 04, 2021
Updated
Apr 04, 2021

Competency-Based Skills

5 skill sets | 20 total skills
Foundations
Demonstrate a working understanding of the organization’s structure, personnel rules, responsibilities, and general understanding of work ethics, interpersonal communications, and related policies. Understands and practices safety procedures and rules.
Demonstrate a working understanding of the organization’s goals, mission, and vision.
Demonstrate a working understanding of the organization’s office tools such as copiers, fax machines, etc.
Demonstrate a working knowledge of the components of a computer and perform basic troubleshooting on communication issues within a computer.
Demonstrate a working knowledge of the hardware components of a computer and perform basic troubleshooting on hardware related issues.
Computer Basics
Demonstrate a working knowledge of the Microsoft Office suite and basic troubleshooting on a computer.
Demonstrate a basic knowledge of troubleshooting, networking, and security across a variety of devices.
Demonstrate a basic knowledge of the cloud components of a network and perform basic troubleshooting on hardware related issues.
Demonstrate a basic knowledge of “best practices” in general network security.
Security Basics
Demonstrate a basic knowledge of “best practices” in managing Linux networks.
Demonstrate a fundamental knowledge of “best practices” in general network security.
Advanced Networking
Demonstrate a fundamental knowledge of basic networking, to allow the flow of information between multiple computers. Install and configure client operating systems for the organization.
Demonstrate a working knowledge of how to configure and troubleshoot network operating systems.
Demonstrate a working knowledge of how to configure and troubleshoot Active Directory.
Demonstrate a working knowledge of how to configure and troubleshoot identity and access solutions.
Demonstrate a working knowledge of how to configure and troubleshoot IIS and terminal services.
Plan and administer Windows Server 2008R2 or newer.
Design a Windows Server 2008R2 or newer Network Infrastructure.
Design a Windows Server 2008R2 or newer Active Directory Infrastructure.
Advanced Security
Demonstrate a basic knowledge of best practices in cryptography, end user management, penetration testing, data forensics, malware, NIST standards, metasploit, end-user management, threat responses, social engineering, and corporate security management best practices.

Technical Instruction

Analyze Various Data Sources to Confirm Suspected Infection
Apprentices will be proficient with being able to confirm the presence of malicious activity using the various tools including wireshark and VIrusTotal.com.
# | 1 hrs
CompTIA Linux+
Apprentices will have a training that will prepare them with the knowledge to become a certified Linux+ expert, spanning a curriculum that covers Linux maintenance task, user assistance and installation and configuration.
# | 14 hrs
CompTIA Linux+ LX0-103
Apprentices will be proficient at Linux administration and also prepared to take their CompTIA LX0-103 Linux+ certification exam.
# | 32 hrs
CompTIA LX0-103: Linux+
The practice certification test will prepare apprentices to confidently ace part 1 of the Linux+ certification exam.
# | 22 hrs
CompTIA Linux+ LX0-104
Apprentices will have knowledge on basic Linux concepts such as package management, commands, and devices.
# | 32 hrs
Scanning and Mapping Networks
Apprentices will be able to scan and map any network using Zenmap, be able to compare the current network system baseline to the previously recorded network map and annotate any discrepancies, and create and save two documents (.xml and .nmap) detailing the findings concerning each system on the network.
# | 3 hrs
Firewall Set-up and Configuration
The candidate has demonstrated the ability to set-up a firewall from the command line interface, configure a firewall from a web interface, and learn how to create a firewall rule to manage network traffic at different levels.
# | 3 hrs
Setting up Zones in a Firewall
Apprentices will be able to be able to configure a pfSense firewall to create/isolate various network segments.
# | 2 hrs
Block Incoming Traffic on Known Port
Apprentices will be able to respond to an incident by blocking incoming traffic of a known port from a specific IP.
# | 1 hrs
Network Miner
Apprentices will be able to use the Network Miner tool, analyze pcap files and extract potentially malicious files.
# | 1 hrs
CompTIA Network+
Apprentices will have the tools to have a successful career in network administration.
# | 40 hrs
CompTIA Network+ N10-007
Apprentices will have hands on labs to learn VPN Technologies and Services.
# | 36 hrs
CompTIA - N10-007 Network+
Upon completion of the test apprentices will have a good understanding of network infrastructure, networking concepts, vulnerabilities, network operations, and troubleshooting.
# | 4 hrs
Preliminary Scanning
Apprentice will know how to utilize Nmap, to identify the systems on a network of responsibilities.
# | 1 hrs
Open Systems Interconnection model (OSI model)
Apprentices will be able to operate the OSI model and be prepared to obtain their OSI model certification.
# | 1 hrs
TCP/IP
Apprentices will have the knowledge of core networking principles that are essential for advancing a career in cyber security or information assurance.
# | 1 hrs
Network Devices
Network devices will solidify apprentice’s knowledge in networking and allow them the opportunity to work hands on with a variety of essential equipment, furthering their cyber security career and provide a valuable skill set that will always be in demand.
# | 3 hrs
Comparing Controls
Apprentices will know how to evaluate policies in place on a domain and apply the policies in accordance to organizational standards.
# | 1 hrs
Cisco CCNA
Apprentices will become proficient in operating, installing, configuring, and troubleshooting WAN, LAN, and dial access services for medium-sized networks.
# | 20 hrs
Cisco Certified Network Associate (CCNA 200-125)
Apprentices will have the skills and knowledge they need to successfully complete their 200-152 Cisco Certified Network Associate certification exam.
# | 35 hrs
Intro to InfoSec
Apprentices will be ready to launch a new career.
# | 1 hrs
CompTIA Security+
Apprentices will be properly prepared to successfully complete the CompTIA Security+ certification exam.
# | 10 hrs
CompTIA Security+ 501
Apprentice will know the information to confidently ace the CompTIA Security+ certification exam.
# | 30 hrs
CompTIA SY0-501: Security+
Based upon a passing score, this test will prove that apprentices have the knowledge threats, attacks and vulnerabilities, technologies and tools, architecture and design. Identity and access management, risk management, cryptography and PKI.
# | 2 hrs
Penetration Testing and Ethical Hacking
Apprentices will be able to exploit networks in the manner of an attacker and be able to protect the network from the attacker.
# | 14 hrs
Certified Ethical Hacker (CEH)
Apprentice will have the skills to become a skillful capable ethical hacker and be able to confidently ace their Certified Ethical Hacker certification exam.
# | 25 hrs
Ethical Hacking (CEH Preparation)
Based upon a passing score, apprentices will have the knowledge of mapping networks, packet sniffing, social engineering and planting a backdoor.
# | 4 hrs
Open Source Password Cracking
Open Source Password Cracking lab teaches apprentices how to use the open source tool, John the Ripper, to crack passwords of various file types on both a Windows and a Linux virtual machine. Apprentices will learn about using tools to crack passwords on Windows and Linux machines. There are many methods to crack passwords, this skill is a key part of the Cyber Operator work role and builds to the ability to use tools, techniques, and procedures to remotely exploit and establish persistence on a target.
# | 7 hrs
Intro to Malware Analysis and Reverse Engineering
Apprentices will be able to perform dynamic and static analysis on all major file types. Apprentices will know how to carve malicious executables from documents and how to recognize common malware tactics and debug and disassemble malicious binaries.
# | 10 hrs
Participate in Attack Analysis Using Trusted Tool Set
Apprentices will be able to participate in the attack analysis and incident response to identify vulnerabilities. Apprentices will also be able to capture a list of the current environmental variables that later will be analyzed for any anomalies in the variables.
# | 3 hrs
Cross Site Request Forgery (CSRF)
Apprentices will be able to prevent ill-intent such as “Phishing” scams, downloadable files via a link, etc. that directs an end-user to a falsified server.
# | 1 hrs
Cross Site Request Forgery (CSRF) Defend
Apprentices will be able to defend against Cross-Site Request Forgery attacks.
# | 1 hrs
Web Application Penetration Testing
Apprentices will be able to develop their own pen testing environment.
# | 3 hrs
XSS Store Based Fishing
Apprentices will be able to perform the following duties: secure coding, web application security essentials, OWASP top 10-cross site scripting, and gain administrator access to illegal websites.
# | 1 hrs
XSS Stored
Apprentices will be able to perform a Stored XSS attack in their investigation of a website that is being used for illegal content.
# | 1 hrs
XSS Reflected
Apprentices will be able to identify XSS Reflected vulnerabilities, how to find XSS Reflected vulnerabilities, how to create a malicious link that will be used for XSS Reflected attack, and they will be able to insert the link into the website.
# | 1 hrs
Incident Response and Advanced Forensics
Apprentices will be able to integrate advanced authentication, how to manage risk in enterprise, how to conduct vulnerability assessments and how to analyze network security concepts and components.
# | 5 hrs
Botnet Takedown
Apprentices will have a proper knowledge to be able to disable a botnet.
# | 3 hrs
Network Discovery
Apprentices will be able to discover information about DNS servers, configure IPTables to impede malicious hackers, run traceroute scans, and running a query to see if the port is open to ICMP packets.
# | 2 hrs
Preliminary Scanning
Apprentices will be able to identify systems on a network of responsibilities. Apprentices will also be able to identify other devices on the laboratory network, to include computers and network infrastructure devices, such as routers.
# | 1 hrs
Parse Files Out of Network Traffic
Apprentices will be able to use the network traffic analysis tools, Wireshark and Network Miner to analyze network traffic and identify potential file transfers and extract files.
# | 1 hrs
Specialized Linux Port Scans
Apprentices will be able to leverage Hping3 to assess ports of various devices on the assigned network.
# | 1 hrs
CompTIA Security+
Apprentices will have the skills to perform proficiently in topics such as threats, vulnerabilities and attacks, systems security, network infrastructure, access control, cryptography, risk management, and organizational security.
# | 10 hrs
CompTIA Security+ 501
Apprentices will have the skills mastered that will be needed to be a security professional.
# | 30 hrs
Using Snort and Wireshark to Analyze Traffic
Apprentices will have the skills needed to critically inspect network traffic and detect suspicious activity. Apprentices will also be able to use Snort and Wireshark to quickly and effectively scan and understand what's happening in their network.
# | 1 hrs
Threat Designation
Apprentices will have the skills to conduct scans against a web server, a file share, a printer and a user’s host device.
# | 1 hrs
Fundamental Vulnerability Management
Apprentices will have the skills needed to use the popular scanning tools, delivery of progress reports, and implementation of increased systems coverages.
# | 1 hrs
Penetration Testing and Ethical Hacking
Apprentices will have the skills and tools that are required for the development and application of an effective vulnerability prevention strategy to prevent attackers from entering key systems.
# | 14 hrs
Certified Ethical Hacker (CEH)
Apprentices will have the skills mastered that are needed to be a capable ethical hacker.
# | 25 hrs
Applying Filters to TCPDump and Wireshark
Apprentices will have mastered the skills to becoming efficient and effective at conducting security task.
# | 1 hrs
Security Assessment & Testing
Apprentices will have the skills to manage risks involved in developing, operating, and sustaining systems and capabilities.
# | 1 hrs
Identifying System Vulnerabilities with OpenVAS
Apprentices will be able to scan a system in OpenVAS to discover and identify systems on the network that have vulnerabilities.
# | 1 hrs
Implement Single System Changes in Firewall
Apprentices will have mastered the skills for network interface configuration, Pfsense firewall initial set-up, firewall rules, and the importance of blocking/allowing TCP/UDP ports.
# | 1 hrs
Manual Vulnerability Assessment
Apprentices will be able to perform a risk assessment based on the findings from the previous vulnerability audits and determine appropriate mitigation actions.
# | 1 hrs
Performing an Initial Attack Analysis
Apprentices will have the skills to perform incidence response on a compromised machine, collect volatile data and have the skill to ability to manipulate data.
# | 1 hrs
Advanced Techniques for Malware Recovery
Apprentices will have the skills to analyze processes, DLLs, registry edits and other auto start functions to locate and remove malicious software from an infected Windows 7 victim machine.
# | 1 hrs
Analyze and Classify Malware
Apprentices will have the skills to create and conduct basic static analysis of a malicious executable file.
# | 1 hrs
Dynamic Malware Analysis Capstone
Apprentices will have the skills to capture network traffic by using the simple “man-in-the-middle” system.
# | 1 hrs
CompTIA Cybersecurity Analyst (CySA+)
Apprentices will have the skills to analysis and defense techniques leveraging data. Apprentices will have the tools to identify risks to an organization and they will know how to apply effective mitigation strategies.
# | 15 hrs
CompTIA CySA+
Apprentices will have the skills to identify and combat malware, and advanced persistent threats (APTs), resulting in enhanced threat visibility across a broad attack surface.
# | 27 hrs
Vulnerability Scan Analysis
Apprentices will have the skills to Identify, Mitigate, Scan, Analyze and Remediate Network Vulnerabilities pertaining to an organization's IT Infrastructure and assess the Threat Environment on the basis of confirmatory audits of the basic IT/Cyber Security CIAAN Privacy Principles.
# | 2 hrs
Vulnerability Scanner Set-up and Configuration
Apprentices will have the skills to perform a Risk assessment based on the findings from the previous vulnerability audits and determine appropriate mitigation actions.
# | 1 hrs
Vulnerability Scanner Set-up and Configuration, Pt. 2
Apprentices will have the skills to perform confirmatory assessments of systems or networks according to an audit policy.
# | 1 hrs
Monitoring Network Traffic
Apprentices will have the skills to interpret the information collected by network tools, detect host and network-based intrusions via intrusion detection technologies, and perform packet-level analysis.
# | 1 hrs
Analyze SQL Injection Attack
Apprentices will have the skills to recognize and validate SQL Injection Attacks against an environment.
# | 1 hrs
Creating Recommendations Based on Vulnerability Assessments
Apprentices will have the skills to perform assessments of systems or networks according to an audit policy.
# | 1 hrs
Advanced Penetration Testing
Apprentices will have the skills on how to attack from the web using cross-site scripting, SQL injection attacks, remote and local file inclusion and how to understand the defender of a network that they are breaking into.
# | 20 hrs
Denial of Service PCAP Analysis
Apprentices will have the skills to perform a Denial of Service attack.
# | 1 hrs
Centralized Monitoring
Apprentices will have the skills to remotely visualize and analyze data through various forms of technology.
# | 1 hrs
Computer and Hacking Forensics
Apprentices will have the skills to; determine potential online criminal activity at its inception, legally gather evidence, search and investigate wireless activity.
# | 10 hrs