The inventory phase of this workgroup has ended. Teh Security Training and Awareness workgroup has set up a number of pages detailing the subjects for training, the target groups and defning a high level plan. If you have any questions or additions please place remarks on the corresponding pages. We are still looking for good pratices. If know any security training or security awareness material Please list it on this page or add a comment below.
Use this page to add your needs and your ideas for training en security awareness. This page is part of a community inventory effort to gather information about training needs and about existing security training and existing security awareness programs. Please feel free to add (you might need to logon first!). If you are missing any categories or attributes please send an a-mail to the chair of this working group, Alf Moens. If you are interested in this subject please subscribe to the WISE WG-STAA mailing list to stay up-to-date or get back to these pages on a regular bases.
The inventory will be used to make a recommendation for training programs end to make a list of the "most wanted" subjects that we will continue to address in the workgroup.
This page is structured along a number of inventory subjects:
- Training needs: what subjects for training do you recognise and who is the target group for that training subject?
- Existing training programs, both commercial and community-owned: Training subjects, target group and level, duration, link to additional information
- Private training programs: Internal training programs that, with a little work, can be shared with the community
- Security Awareness programs: Programs or campaings for raising security awareness
Training needs
Please fill in any subjects that you feel are relevant for the users, systems managers and any others involved with the e-infrastructures
| subject | target group | remarks |
|---|---|---|
| security awareness | users | |
| privacy awareness | ||
| Incident respons, analyses en reporting | systems management | |
| Legal restrictions | ||
| Configuring secure systems | ||
| Secure software development | ||
| Pentesting |
| |
| Secure System Administration | System Administrators | |
| Network Security | Network engineers | Training for network engineers (not security staff) on sure network administration. |
These pages have been initially drawn up at the WISE workshop on March 28th 2017 in Amsterdam, with contributions from Ralph Niederberger, Daniel Kouřil, Rob Quick and Alf Moens
Existing Training Programs
| Title | Subject | Target group | Level | duration | more info | ||
|---|---|---|---|---|---|---|---|
| Transit I | Incident respons | incident response teams | 3 days | TF-CSIRT | |||
| Transit II | advanced subjects for incident respons teams | incident response teams | 2 days | TF-CSIRT | |||
| SANS | |||||||
| CTSC Training Links | Various Topics | Technical, Managerial | n/a | http://trustedci.org/trainingmaterials/ | |||
| XSEDE Information Security Training | General InfoSec training | XSEDE Users | Beginner | 30-60 mins | https://www.citutor.org/index.php | ||
| Jisc (security) training offering |
| subsidiaries | divers | div. | https://www.jisc.ac.uk/advice/training/network | ||
| RIPE training material | admins | https://www.ripe.net/support/training/courses |
Security Awareness Programs
| Programme | Description | Language | specifics | |||
|---|---|---|---|---|---|---|
| SANS | OUCH, monthly awareness newsletter | english | free | |||
| CybersaveYourself | Website & database of materials (games, posters, slide decks) wwww.cybersaveyourself,nl | dutch, english | aimed at universities | |||
...
PPPt presentation with latetst definitions of target groups and training and wareness subjects
...