SEC News

What's new arround internet

Last one

Src	Date (GMT)	Titre	Description	Tags	Stories	Notes
	2024-04-12 00:00:00	Les applications s'ouvrent maintenant - Cyber Innova la bourse de cybersécurité avec MTU. Applications Open Now- Cyber Innovates Cyber Security Scholarship with MTU. (lien direct)	In today\'s digital age, cybersecurity has become paramount. With cyber threats evolving constantly, there\'s a pressing need for innovative solutions and skilled professionals in this field. Munster Technological University (MTU) is stepping up to address this challenge with its groundbreaking Cyber Innovate scholarship programme. Announced recently by Brian O\'Donovan in an RTE article on Cyber Innovates Scholarship Programme with MTU, MTU\'s Cyber Innovate programme is now open for applications. This initiative aims to foster a new generation of cybersecurity innovators and entrepreneurs by offering a comprehensive 10-month programme coupled with a tax-free scholarship of €38,000. Successful candidates will not only receive a postgraduate qualification in cybersecurity innovation but will also have the opportunity to contribute to the creation of new startups and innovations. Unlike traditional cybersecurity courses, applicants are not required to have a background in cybersecurity or IT. This opens doors for individuals from diverse fields such as IT, humanities, and business to apply, fostering a collaborative environment where varied skill sets come together to produce groundbreaking solutions. Dr. Donna O\'Shea, Chair of Cybersecurity at MTU, emphasizes the significance of this initiative, stating, "Our graduates will be catalysts, educators, and leaders-architecting innovative cybersecurity solutions that bolster our national security and propel Ireland to the forefront of global cyber entrepreneurship." Centered around the Cyber Innovate Immersive Environment (CIIE), participants will dive into real-world cybersecurity challenges and functions. Teams of individuals from diverse backgrounds including cybersecurity, IT, business, and humanities will collaborate closely. Their goal is to identify unmet needs within the cybersecurity sector and leveraging their diverse expertise to develop groundbreaking solutions. They will be supported by a mentorship network comprising industry leaders, cybersecurity experts, venture capitalists, and academics. Participants will also have access to MTU\'s world class cyber security infrastructure including the Cyber Range and Q Cloud. As Josette O\'Mullane said, "In working with leading cybersecurity educators, researchers, innovators, and industry champions, we envisage the graduates from this programme will initiate a new wave of cybersecurity innovation and entrepreneurship in the region." A recent report from Cyber Ireland and Cyber Skills highlights the opportunity to grow the cybersecurity workforce to over 17,000 by 2030. MTU\'s Cyber Innovate programme contributes significantly to this vision. Apply for the cyber security scholarship through the Cyber Innovate website here- MTU Cyber Innovate Scholarship- Applications open until April 19th, 5pm. In today\'s digital age, cybersecurity has become paramount. With cyber threats evolving constantly, there\'s a pressing need for innovative solutions and skilled professionals in this field. Munster Technological University (MTU) is stepping up to address this challenge with its groundbreaking Cyber Innovate scholarship programme. Announced recently by Brian O\'Donovan in an RTE article on Cyber Innovates Scholarship Programme with MTU, MTU\'s Cyber Innovate programme is now open for applications. This initiative aims to foster a new generation of cybersecurity innovators and entrepreneurs by offering a comprehensive 10-month programme coupled with a tax-free scholarship of €38,000. Successful candidates will not only receive a postgraduate qualification in cybersecurity innovation but will also have the opportunity to contribute to the creation of new startups and innovations. Unlike traditional cybersecurity courses, applicants are not required to have a background in cybersecurity or IT. This opens doors for individuals from diverse fields such as IT, humanities, and business to apply, fostering a collaborative environment where varied skill sets come toget	Cloud		★★
	2023-11-06 00:00:00	Cybersecurity MSC (par recherche) Graduationmr Simone Rodigari Cybersecurity MSc (by research) GraduationMr Simone Rodigari (lien direct)	M. Simone Rodigari, dont les superviseurs comprenaient le Dr Sean McSweeney, le Dr Donna O \\ 'Shea et le Dr Pat McCarthy, diplômé avec un Master \'s of Science (par recherche) à MTU Annual Conferring \' s.Le titre de sa thèse était l'analyse des performances de zéro confiance dans les systèmes natifs cloud.Dans le cadre de son travail, Simone, a évalué les frais généraux de performance et l'atténuation possible dans les systèmes natifs cloud garantis avec un maillage de service, ce qui permet d'activer les politiques de sécurité pour l'authentification, l'autorisation et le cryptage du trafic au sein des systèmes distribués.Le proxy de voitures latérales est un composant central de cette architecture, agissant comme un point d'application des politiques et interceptant la communication de mise en réseau de / vers les applications partielle du maillage, affectant par conséquent les performances des applications hébergées dans le cloud.Les ressources physiques sont nécessaires pour faire fonctionner le plan de contrôle et le plan de données, tandis que la latence est affectée par l'application des politiques de sécurité et du chiffrement.Nous avons configuré un environnement cloud composé d'un cluster Kubernetes géré, déployé une application synthétique native Cloud, configuré le maillage de service, testé les performances sous chargement et analysés les résultats pour établir les frais généraux en termes de latence, de CPU et de mémoire.L'analyse est effectuée à la fois sur les données et le plan de contrôle.De plus, une amélioration des performances a été explorée avec l'utilisation de la technologie du filtre de paquets Berkeley étendu qui fonctionne au niveau du noyau Linux.Les résultats montrent une réduction de la consommation de processeur ainsi que de la latence. Mr Simone Rodigari, whose supervisors included Dr Sean McSweeney, Dr Donna O\'Shea and Dr Pat McCarthy, graduated with a Master\'s of Science (by Research) at MTU annual conferring\'s. The title of his thesis was Performance Analysis of Zero Trust in Cloud Native Systems. As part of his work, Simone, assessed the performance overhead and possible mitigation in cloud native systems secured with a service mesh, which allows enabling security policies for the authentication, authorization and encryption of traffic within distributed systems. The side-car proxy is a core component of this architecture, acting as a policy enforcement point and intercepting networking communication from/to applications part of the mesh, consequently affecting the performance of applications hosted in the cloud. Physical resources are required to operate the control plane and data plane, while latency is affected by the enforcement of security policies and encryption. We configured a cloud environment consisting of a managed Kubernetes cluster, deployed a cloud native synthetic application, configured service mesh, tested the performance under load and analyzed results to establish the overhead in terms of latency, CPU and memory. The analysis is performed on both data and control plane. Additionally, a performance enhancement was explored with the use of extended Berkeley Packet Filter technology which operates at the Linux Kernel level. Results show a reduction in CPU consumption as well as latency.	Legislation Cloud		★★
	2023-08-18 00:00:00	Rejoignez notre équipe Cyber Skills!Libérez votre potentiel dans le développement de la sécurité des réseaux à Munster Technological University! Join Our Cyber Skills Team! Unleash Your Potential in Network Security Development at Munster Technological University! (lien direct)	Une opportunité incroyable vous attend alors que nous recherchons des développeurs passionnés de sécurité du réseau pour devenir membres intégraux de notre équipe dynamique des Cyberskills au Nimbus Research Center de Munster Technological University. À propos du rôle: En tant que développeur de sécurité de réseau, vous travaillerez dans le cadre d'une équipe fournissant des services d'éducation et de recherche sur la cybersécurité à l'industrie et à la recherche des progrès de la cybersécurité.Vous aurez l'autonomie pour créer et fournir des services de cybersécurité pour des projets de recherche avec des clients de l'industrie, des chercheurs et des professeurs.Travaillant à la fois sur un Airbus Mobile et une cyber-gamme basée sur le cloud, vous collaborerez avec des experts de premier plan en cybersécurité de l'industrie et du monde universitaire.Ces cyber-gammes sont des infrastructures de cybersécurité à la pointe de la technologie et sont une offre unique chez Cyber Skills et MTU. Exigences: Connaissance des concepts de réseautage et de cybersécurité logiciels. Boulangement éprouvé de la recherche et du développement de solutions de sécurité. SORTS SOB SWER ET SCRIPTING SACTIONNEMENTS. Capacité à s'adapter à l'évolution des pratiques de travail. Couramment l'anglais parlé et écrit Volonté de travailler des heures flexibles et de voyager à l'échelle nationale au besoin. Une qualification de troisième niveau appropriée au niveau NFQ 8 ou équivalent ou supérieur. Date limite d'inscription: Ne manquez pas cette opportunité excitante!Soumettez votre demande avant 13 h 00 le mardi 12 septembre 2023 pour être considérée pour ce poste. Pour en savoir plus sur ce que le travail implique, téléchargez la spécification du travail ici. Toutes les candidatures doivent être présentées en ligne sur https://www.mtu.ie/vacancies/ sélectionner Nimbus comme département. An incredible opportunity awaits you as we seek passionate Network Security Developers to become integral members of our dynamic CyberSkills team at the Nimbus Research Centre in Munster Technological University. About the Role: As a Network Security Developer, you\'ll be working as part of a team providing cybersecurity education and research services to Industry and researching cybersecurity advancements. You will have the autonomy to create and deliver cyber security services for research projects with industry clients, researchers, and lecturers. Working on both an AIRBUS mobile and a cloud based Cyber Range, you will be collaborating with leading experts in cybersecurity from both industry and academia. These Cyber Ranges are state-of-the-art cybersecurity infrastructures and are a unique offering at Cyber Skills and MTU. Requirements: Knowledge of Networking and Software Cyber security concepts. Proven track record of research and development of security solutions. Strong SW development and scripting skills. Ability to adapt to changing working practices. Fluent in spoken and written English Willingness to work flexible hours and travel nationally as required. An appropriate third-level qualification at NFQ level 8 or equivalent or above. Application Deadline: Don\'t miss out on this exciting opportunity! Submit your application by 1.00 pm on Tuesday, 12th September 2023 to be considered for this position. To read more about what the job entails, download the job specification here. All applications must be made online at https://www.mtu.ie/vacancies/ select Nimbus as department.	Mobile Cloud		★★
	2022-08-29 00:00:00	Le nouveau certificat de cybersécurité offre aux PME une voie vers une plus grande résilience commerciale et un sauvetage en ligne New cyber security certificate offers SMEs a pathway to greater business resilience and online savviness (lien direct)	Chair of Cybersecurity in Munster Technological University, Dr. Donna O\'Shea, and Head of School of Informatics & Cybersecurity at TU Dublin, Dr. Anthony Keane contributed to this article in the Independent.ie In recent years, cyber security has emerged as a key issue for businesses in Ireland and across the world. Small enterprises are exposed to the same digital threats as larger businesses, but may lack the resources to defend themselves. It has been estimated that almost half of SMEs that suffer a serious cyber attack can go out of business within months. Enhanced cyber security is a matter of great societal importance, because SMEs operating in myriad industries such as retail, health care and construction are the backbone of the Irish economy. They constitute 99pc of all businesses and account for more than half of EU Gross Domestic Product (GDP). SMEs play a vital role in adding value to all sector of the economy, but they may lack essential skills on how to protect their businesses, which are often heavily dependent on digital systems that are vulnerable to cyber-attacks. The urgency of addressing this skills gap was highlighted by the COVID-19 pandemic, which forced many businesses online, exposing them to a higher risk of cyber attacks with little support available. Irish businesses operating online often possess a low cyber security awareness, have inadequate knowledge of GDPR requirements in the protection of critical and sensitive information, and have a low level of Information and Communications Technology (ICT) skills to protect their business. They can also experience significant budgetary constraints that lead them to view cyber security as a relatively significant cost, rather than an important investment in their business resilience. In addition, many SMEs have direct and indirect business relationships with larger organisations. For this reason, cyber criminals often focus on SMEs as a gateway into the larger organisations, knowing that these smaller businesses\' cyber awareness and defensive structures are typically less robust than those of the criminals\' larger targets. Recently, the National Cyber Security Centre (NCSC) and the Garda National Crime Bureau have written to the Small Firms Association to warn business owners of the ongoing series of ransomware attacks. They have observed a growing trend of small and medium sized enterprises being targeted by cybercrime groups with ransomware malicious software that is designed to block access to a computer system. Another common cyber crime tactic is threatening to leak sensitive stolen data until a sum of money is paid. The NCSC said it has noticed a change in tactics whereby hackers are now turning their attention away from big business and Government departments, towards smaller businesses. Providing businesses with cyber skills Professor Donna O\'Shea is Chair of Cybersecurity in Munster Technological University and currently leads a Higher Education Authority (HEA) Human Capital Initiative (HCI) project called CYBER-SKILLS: a nationally funded project in collaboration with University of Limerick, Technological University (TU) Dublin, and Commonwealth Cyber Initiative, Virginia Tech U.S. This ground-breaking initiative aims to address the cybersecurity skills challenge in Irish SMEs. Prof. O\'Shea says, “Growing up, my family owned an electrical retail store, so I really understood the challenges that small businesses face, their limitations in terms of time and how cost can sometimes be a barrier. When designing the course Certificate in Cybersecurity for Business for CYBER-SKILLS, we really wanted a pathway to be open to everyone and we wanted to reduce the barriers to participating in the course, by reducing the cost, making it flexible in delivery, focusing on applied skills and providing the essential necessary knowledge and skills to protect small businesses everywhere against cyber attacks.” Irish professionals and businesses have expressed a growing interest in cybersecurity courses and careers, as borne out by the recen	Ransomware Data Breach Malware Patching Prediction Cloud		★★
	2022-03-16 00:00:00	Cybersécurité - la valeur et le besoin de formation pratique Cyber Security -The Value and Need for Practical Training (lien direct)	Whenever we are trying to master a new skill, we have all heard about the importance of practise. The associated attention, rehearsal and repetition leads to the acquisition of new knowledge or skills that can later be developed into more complex skillsets. This sentiment has been seen throughout history, where some of the world\'s most masterful people have shared a similar philosophy that is still true today: Bruce Lee - “Practice makes perfect. After a long time of practising, our work will become natural, skillfull, swift and steady” Abraham Lincoln - “Give me six hours to chop down a tree and I will spend the first four sharpening the axe.” Japanese Proverb – “Tomorrow\'s battle is won during todays practice” Vincent Van Gough – “As practise makes perfect, I cannot but make progress, each drawing one makes, each study one paints is a step forward” Marshawn Lynch - “When you get to practice against the best, it brings the best out of you.” Martha Graham – “Practice means to perform, over and over again in the face of all obstacles, some act of vision, of faith, of desire. Practice is a means of inviting the perfection desired” Unknown - “Don\'t practise until you get it right, practice until you can\'t get it wrong” Others might disagree slightly: Vince Lombardi – “Practise does not make perfect. Only perfect practise makes perfect” So, the message is clear, to master a skill, we need to practise but we need to practise against the best and in the best most realistic possible environment. In terms of cybersecurity, as the cyber threat environment grows more intense, cyber defence groups require more and more skilled professionals to help with the onslaught of cyberattacks. However, they are finding it increasingly difficult to recruit and hire trained security professionals as having a degree in cybersecurity is usually not enough to give an individual the skills required for mitigating sophisticated attacks. For Cyber Security professionals, the required practise involves realistic breach scenarios or cyberattacks. These breaches or cyberattacks are any attempt to gain unauthorized access to a computer, computing system or computer network with the intent to cause damage. The aim to disable, disrupt, destroy or control computer systems or to alter, block, delete, manipulate or steal the data held within these systems. Day-to-day work in cybersecurity offers few opportunities for such training on the job, resulting in the required practise being an extremely difficult thing to achieve. When you think about it, cyberattacks are seemingly in the news every day, which seems to contradict my previous statement. However, the results of a cyberattack can range from causing inconvenience to dire consequences. A cyberattack on critical infrastructure and/or healthcare sectors don\'t just affect data or computer systems, they can wreak havoc in the physical world. This was seen all too well in Ireland in the not so distant past. So, cyberattacks are prevalent but the consequences mean we aim to prevent as many breaches as possible and reduce the impact, contain and eradicate any attack that exploits a system. There lies the problem, cyber security professionals require realistic breach scenarios and cyberattacks to train and become sufficiently skilled but cyber professionals are consistently working hard to prevent such attacks in the real-world. So the question is, “how do we train cyber security professionals to deal with the challenging ever-changing cyber environment?”. The answer is a Cyber Range! A Cyber Range provides a secure, sandboxed virtual interactive training environment that can simulate real-world feel scenarios and environments, including complex IT environments and attacks on IT infrastructure, networks, software platforms and applications. As a result, a cyber range infrastructure provides the required training and practise elements of realistic breach scenarios and cyberattacks. A Cyber Range enables students to practice newly acquire	Tool Threat Studies Mobile Industrial Medical Cloud		★★
	2022-02-10 00:00:00	Cyber Security & # 8211;Une guerre de Troie où nous gagnons Cyber Security – A Trojan War where we win (lien direct)	Written by Dr. Anila Mjeda, Cyber Skills Lecturer In Ancient Greek literature, Troy is portrayed as a powerful kingdom of the Heroic Age. Troy\'s ability to withstand battles and attacks was due to the strength of its walls which, legend has it, were built by Greek gods, Poseidon and Apollo. This was all the more evident when Troy \'fell\' after it\'s supposed, impenetrable outer perimeter, got breached. This lesson from Greek Mythology echoes ever true in today\'s software systems. Our Cyber Security mechanisms must be approached in a manner called \'Defence-in-depth”, where a number of defence mechanisms are layered to offer better protection to the system. (Imagine the medieval castles\' layers of fine battlements, towers, and \'high\' and \'steep\' walls.) What is most vital in Cyber Security, is the inner most layer of a strong, defence-in-depth. This layer should start with secure coding which is a concept we call \'Shifting Left\'. Shifting Left Shifting left, in essence means incorporating security at the beginning of a project, such as data collecting, and incorporating security activities in each of the stages of the software development lifecycle. The shifting left metaphor stems from the fact that people whose native language is written from left to right, tend to perceive left (think of the outmost left on a page) as the place where one begins their work. As a developer, will your application need to handle credit card data? Will the users of your application be allowed to upload their own files to the system, and which third-party components will you be using in the system? These are but a fraction of the security considerations to be analysed from the beginning of any project. Today\'s software systems are inherently interconnected, and we cannot simply draw up the bridge and defend our systems medieval style. Software systems use libraries, APIs, microservices and in general a variety of components that translate to an end-product. There are complex dependencies, many of which to third-party software. Furthermore, modern approaches such as Continuous Integration / Continuous Deployment (CI/CD) pipelines, Infrastructure as Code (IaC), Security as Code (SaC), Platform as a Service (PaaS), and Infrastructure as a Service (IaaS) push more functionality into the software domain. This blurring of the boundaries means that security is not the job of only the security professionals and calls for the development team to play a crucial role in it. Software developers are talented and inventive creators and as cyber-attacks increase in numbers and severity, it is vital they collaborate closely with the security professionals and get the proper training to interweave security into their creations. While proper training of developers is the real answer to prevent vulnerabilities creeping up into our apps, if I were to start from one element, it would be the mentality of Zero-Trust. While I do not recommend it as a mentality for life, I do very much recommend it in all thing\'s cybersecurity. The Zero-Trust concept extends from infrastructure to software. In fact, one aspect of our software which if we do right, would solve most of our security woes is zero-trusting all inputs. Zero-Trust Your Inputs Language purists might forgive this conversion of zero-trust into a verb, on the grounds that placing no trust on all inputs (even when they come from your own system), would help us mitigate most of our security troubles. You may be asking, “Why don\'t we just do it then, and “solve” security once and for all?”. Part of the difficulty relies on identifying every single input. Did we identify all the cloud workflows that can trigger our serverless functions? Are there any unforeseen ways into our database (Hello injection vulnerabilities)? Can an attacker give instructions to the server and resultantly gain access they should not have (Server-Side Request Forgery (SSRF) vulnerabilities)? Can our web-based system be commandeered to attack our legitimate users (Cross Site Scripting (XSS) v	Vulnerability Cloud		★★
	2021-11-01 00:00:00	Cyber Skills - ce que vous devez savoir Cyber Skills - What You Need to Know (lien direct)	Cyber Skills – Building Ireland Cyber Security Skills Cyber Skills is national programme funded by the Higher Education Authority Pillar 3 Human Capital Initiative. In collaboration with Munster Technological University, University College Dublin, Technological University Dublin, and University of Limerick we are committed to addressing the skill shortage in Cyber Security. We provide online, fully flexible university accredited micro-credentials and pathways. We empower the learner by offering a wide range of modules or specifically designed courses all of which have been aligned to the NIST NICE Cyber Security framework. As a Cyber Skills graduate you will be workplace ready with the skills and knowledge needed to advance in your career. Micro-Credentials A micro-credential is a short, accredited module of learning. Cyber Skills micro-credentials are 5-10 credits and can be used towards a major award. We offer the control and flexibility to choose the micro-credentials you need to build your own training programme. To view our micro-credentials, click here Pathways Choose a pathway that has been specially designed in close collaboration with industry based on the needs of the workplace. Our pathways consist of micro-credentials which are tailored to a specific in-demand job roles needed by industry. To view our pathways, click here Why should I up-skill my team? Cyber Security is now a priority for every business across all industries. A high percentage of cyber-attacks come through a lack of knowledge. Managers can no longer solely rely on cyber security software; but invest in staff education to identify a cyber threat and the upskilling needed to prevent it. By educating your staff through Cyber Skills you are ensuring that they can protect and recover computer systems, devices, programs and networks from any type of cyber-attack. Why should I up-skill? Cyber Security is the fastest growing, in-demand field of ICT and there is a significant shortage of skills in this sector globally. Therefore, with cybersecurity qualifications your skillset is among the most sought after in organisations. Become part of a highly dynamic industry and know that your role is playing an important part in society today. Why Choose Cyber Skills “We are committed to empowering the individual in order to eradicate cyber vulnerability.” Cyber Skills is the only place where you can find a course that has been specifically designed and created by industry and academia experts. Working closely with our industry partners Dell and MasterCard we have designed courses informed by the needs of the workplace to enhance the skills of networking and software development professionals. Our lecturers come from multi-disciplinary backgrounds, with a passion for cybersecurity. Combining years of experience and with expert knowledge our lecturers enable students to achieve their goals. Cyber Range Cyber Skills benefits from the first of its kind world class cloud based Cyber Range. The Cyber Range provides a secure, sandboxed area which simulates real-world feel scenarios and environments where students can test their new skills. Labs and assignments will be used to reinforce the content from the lectures. A full range of scenarios will provide the opportunity to test the vast array of techniques required to keep ahead in this challenging ever-changing environment. Recognition of Prior Learning Candidates who have gained relevant knowledge and skills through informal study or experiential means can apply for Cyber Skills Pathways and Micro-Credentials. We will discuss with an applicant their experiences to ensure our courses will be of benefit to their career. Cyber Skills – Building Ireland Cyber Security Skills Cyber Skills is national programme funded by the Higher Education Authority Pillar 3 Human Capital Initiative. In collaboration with Munster Technological University, University College Dublin, Technological University Dublin, and University of Limerick we are committed to addressing t	Vulnerability Threat Studies Cloud		★★

Last update at: 2024-06-27 18:08:00
See our sources.

To see everything: Our RSS (filtrered)