NSA Expert Delivers Interactive Learning Session

On April 14, 2023, Damon Smith from NSA provided an interactive learning session on reverse engineering. A follow-on session and a future repeat session are being planned. 

Advisory Council

When our center was created, membership in our advisory team was established to include cybersecurity leadership from the Milwaukee area. We called on some of the largest commercial enterprises to join our advisory team. With representatives from ULINE, US Bank, RW Baird, Kohl's, GE Healthcare, IBM, Children's Hospital, and Astronautics, we cover many industry segments. The membership of the council includes members from other CAE institutions, other academic units on our campus, and government representatives. 

In March 2023, we held a review meeting with advisory team members. Many of the topics covered were prompted by items covered in our NCAE recertification effort. The agenda for that meeting included program level learning objectives, program assessment, assessment data, elements of the program of study (courses, faculty, and student data), a discussion of our Cybersecurity Labs, the Cyber Eagles competition team, program electives, and faculty research work.

Marquette University tips for students

The Universities Information Technology Services (ITS) cybersecurity team has made available Cybersecurity Tips for Students our campus. This resources includes some elements designed specifically for remote learning situations.

Marquette University receives CyberCorps grant

As the first CyberCorps grant recipient in the State of Wisconsin, Marquette University is proud to be a part of this important program that further attests to the qualifications of our graduates from the M.S. in Computer and Information Science with a specialization in Information Assurance and Cyber Defense:

SFS Logo

See the announcement published in Marquette Today.  Marquette computer science professor awarded $2.6 million NSF grant to train next generation of cybersecurity professionals - Marquette Today)

Cyber Security Awareness Month 2022

As is our practice every year, we sponsored a Cyber Security Awareness Month event for faculty, staff, students, and the community. This free event was scheduled for October 6, 2022. The event was held on the Marquette campus. We discussed Teaching and Leading with a Security-first Mindset, the pedagogy of teaching Ethical Hacking, and the experiences of professional penetration testers.

CyberPatriot Summer Camp for High School students

The Klingler College of Arts and Sciences along with the Air Force ROTC Det 930, the Center for Cyber Security Resources and Cyber Defense, and other campus units are supporting a CyberPatriot CyberCamp Aug 1-5. The camp is designed to teach beginner students the basics of cybersecurity. No prior cybersecurity knowledge is required for participants.

CyberPatriot is a national initiative supported by the AIr Force Association (AFA). It provides materials for camps such as the one being delivered at Marquette University and administers the nations's largest youth cyber competition. Contact us for more information.

 

Cyber Security Awareness Month 2021 (October)

October 2021, Cyber Security Awareness Month, was a busy month

Starting on October 1, 2021, we held a Cyber Security Awareness Month Kick-Off Meeting with a welcome from Provost, Kimo Ah Yun, important cyber security announcements from Chief Information Officer, Laurie Panella, remarks from the Klingler College of Arts and Sciences by Associate Dean Ed Blumenthal and a Presentation about our center and the October events by Tom Kaczmarek, Director for Cyber Security Awareness and Cyber Defense. The program included a panel of representatives from across campus talking about the importance of cybersecurity in their discipline. 

On October 5th we convened for a special workshop on Consequence-Driven, Cyber-Informed Engineering (CCE) presented by Andrew Bochman, a research scientist from the Idaho National Laboratory and Andrew Ohrt, Lead Risk and Resilience, West Yost Associates. In this presentation, they introduced the concepts associated with CCE that was developed by Idaho National Laboratory and  currently being deployed by critical infrastructure owners around the country, CCE is a ground-breaking approach to designing and securing more resilient physical systems. THis session was jointly sponsored by the EECE program from the Opus College of Engineering at Marquette. (see details here)

October 8, we welcomed members of SIM Wisconsin seeking advise in the IT Leadership Forum on Cybersecurity. This event was co-sponsored by the Wisconsin Chapter of SIM. IT leaders received advice on protection of the cloud and combating ransomware from thought leaders David Kliemann of IBM and Theresa Miller of Cohesity. A panel of CISOs and other cyber experts and CISOs will discuss what CIOs need to know about cybersecurity and resiliency. (You can view the agenda here, which was the registration site.)

On October 15, The Computer Science Department and the center sponsored an ACM distinguished lecture by Joshia Dykstra. The topic of the talk was "Getting Started in Cybersecurity Science." This talk offers an introduction for students and practitioners to the application of the scientific method to cybersecurity tools and systems. Also in October on the 25th David Mohaisen spoke about current research on blockchain security.at a Computer Science Colloquium (see the colloquium website here)

On October 27, students, professionals, and employers gathered at a Cybersecurity Career Awareness Networking Event . Co-sponsored by the career services center with pizza and beverages hosted by Northwestern Mutual, this informal gathering of professionals and students allowed students to ask questions and explore cyber security careers. (details are in Handshake). Two students of the program, Chris Supinger and Erin Makarewicz shared their experiences studying in our M.S. program and taking on cybersecurity careers.

Finally, on October 29, as part of MKE Tech Week, we hosted a Workshop on Cybersecurity Workforce Development. We featured an overview of academic programs in the Milwaukee area that prepare workers and listened to employer thoughts about internships and apprenticeships in cybersecurity. This meeting included representatives from Marquette's EOP that has a long history of helping school-age, low-income and first-gen college students of Milwaukee achieve their potential. The meeting featured a discussion of a proposal for creating a cybersecurity career pipeline for underrepresented students. (registration was administered through MKE TECH and the Wisconsin Startup Coalition).

 

Training Opportunity Remains Open

The Department of Computer Science is offering Marquette University students, independent of academic program or college affiliation, an opportunity to apply for training in cybersecurity. Through a grant provided to the Department of Computer Science by ULINE, students will be provided 1-year unlimited access to the Infosec Skills training platform. The Infosec skills training platform provides more than 600 courses, 160 online labs, and 1,000 hours of online training. Access to training will be administered through the Center for Cyber Security Awareness and Cyber Defense. See this link for further information,

GenCyber Camp 2021

The last week of July 2021, Dr. Debbie Perouli from the Department of Computer Science presented a virtual cyber summer camp for about 30 high school students introducing them to cybersecurity. This was sponsored by NSA/NSF under the GenCyber program. Contact Dr. Perouli for details.

 

CYBER RISKS, TRENDS, PREDICTIONS 2021

At this annual meeting we explored Cyber Risks Trends and Predictions with experts from the world of online meetings ( Microsoft Teams), a CISO fighting risks at Children's Hospital of Wisconsin, and cyber insurance experts. We met on

June 11, 2021 for a Virtual meeting 8:15 A.M. (CDT) to 11:30 A.M. (CDT)

In this time of virtual everything, including meetings, we implemented a new virtual element, networking opportunities with the experts.

AGENDA

8:15 Introduction

8:20: Dave Jaworski, Risk, Resiliency and Operational Continuity

This keynote talk explained why the current threat situation requires action and then turned to what has worked to maintain operational continuity, including thoughts on AI monitoring and RPA. It concluded with discussion of the Next Steps to manage the situation to repel the attacks forecast for global manufacturing and other industries.

9:10: Angela Johnson

Given from the perspective of a CISO, this keynote provided insights into how to manage risks and prepare for the threats that are trending.

10:00: Panel: Cyber Insurance (Stephanie Dingman, Catarina Kim, Angela Johnson, and Che Bhatia) - THe panel addressed questions such as, "Are you being asked to supply more information about your security posture to your insurance underwriters. Are you experiencing mandatory higher limits on coverage or seeing increased premiums for cyber insurance? Do you want to learn how to gain control of your cyber insurance dilemma through the adoption of best practices?"

10:45 Network with the experts (Virtual breakout rooms to chat informally)

11:30 Leave with some personal action items

BIOGRAPHIES:

Dave Jaworski, A strategic manager who is passionate about helping people and organizations achieve their dreams and potential. Dave is Principle Program Manager, Microsoft Teams Strategic Customer Engineering at Microsoft and the author of “Microsoft Secrets: An Insider’s View of the Rocket Ride from Worst to First.” With over 30 years of technology, sales, marketing and management experience, Dave has helped organizations in multiple industries across the globe. This includes developing and delivering profitable, award winning technology products. Employee #3 at Microsoft Canada, Dave was instrumental in launching Microsoft’s Canadian operation and was awarded the first-ever Bill Gates’ Chairman’s Award of Excellence, recognizing him as Microsoft’s #1 employee worldwide that exemplified excellence by Bill Gates and the Microsoft Executive team. He was Microsoft’s National Sales Manager, then GM of U.S. Sales Operations. Along with music industry execs, Dave founded PassAlong Networks, providing digital media services for 200+ clients, including eBay. PassAlong patented technology for eCommerce and sharing music. PassAlong was first in the world to innovate and implement micro-payments with PayPal. Dave helped Avon develop deeper relationships with its global sales force and its customers when he served as CTO for Intero Alliance building the Intero Lifestyle Network, launched in 62 countries in 37 languages. Dave then served as VP Sales at Netsteps where he doubled sales. Dave then built Meta Media Partners, helping clients transform their customer experiences, enhance their employee engagement, optimize their operations, and create new products and services. In July 2017, Dave returned to Microsoft to join an elite team of Digital Advisors, working with Microsoft’s top accounts around the world to help them refresh their organizations. He then moved to Teams Engineering to help enable organizations worldwide transform and run their business on Microsoft Teams.

Angela Johnson, Since June of 2017, Angela has been shaping cybersecurity efforts and leading information security management at the Children's Hospital of Wisconsin. She currently serves as the CISO and VP Information Systems Infrastructure. Formerly she was the Director of Information Security and the Assistant VP and Assistant Corporate Secretary at Baird where she was active in process improvement efforts in risk management and customer focused services. With prior responsibilities at Metavante and FIS, her experience also includes supply chain management and supplier contract management.

Stephanie Dingman, CPCI, CIC, ARM, Managing Director, Cyber Solutions, Aon, Stephanie is Managing Director and National Operations Leader for Aon’s Cyber Solutions E&O/Cyber Broking team in the Central Region. Stephanie provides clients with broking expertise and consultative advice for Cyber, Professional Liability, Technology and Media risks. Prior to joining Aon’s Cyber Solutions broking team, Stephanie was a Director for Aon Broking U.S. Retail, an Account Executive in Miami and a Senior Consultant on the Actuarial and Analytics team within Aon Global Risk Consultants. Stephanie has been with Aon since 1997. Stephanie holds the Chartered Property Casualty Underwriter (CPCU) designation, Associate in Risk Management (ARM) designation and Certified Insurance Counselor (CIC) designation. Stephanie earned a Master of Business Administration in Finance from the University of Minnesota and a Bachelor of Business Administration in Actuarial Science and Risk Management and Insurance from the University of Wisconsin.

Catarina Kim, Catarina is a Vice President in the Intelligence Group of Aon’s Cyber Solutions (formerly Stroz Friedberg) where she leads the threat intelligence program. In her current role, she overseas advanced analytic services and delivers data driven solutions to clients globally. Her areas of specialization include cyber intelligence, threat monitoring, open source mining, deep and dark web collections, cybercriminal and fraud investigations, and nation state threat analysis. She has over 15 years of experience managing complex intelligence and investigations in the financial services sector and for the U.S. Intelligence Community.

Che Bhatia, Adjunct Marquette University and Vice President of Cyber Resilience and Engagement Management within our Global Aon Cyber Solutions practice (formerly Stroz Friedberg). In this role he is responsible for helping clients proactively manage the cyber and enterprise risk and leads digital forensics, cybercrime, data breach, compliance, electronic discovery and business intelligence and investigations matters. Prior to joining Aon, Chetan served as the Chief Technology Officer at Data Partner, Inc. where he was responsible for the technical vision, strategy and roadmap for the organization. He was also a cyber-security consultant for Advance Resources and Consultants, a firm led by former senior-level government and military officers, where he conducted cyber security risk assessments. At Nexum, he served roles such as business development director and practice manager and was responsible for the project management and network/security engineering teams. Before joining Nexum, he worked at Hewitt Associates and Aon, where he deployed and administered security controls and was part of a team that maintained the network security infrastructure protecting the PII of over 75% of the Fortune 500 organizations. Chetan also serves as adjunct professor at Washington University in St. Louis where he also a member-at-large on the cybersecurity education advisory board. Chetan also serves as faculty at Loyola University in Chicago. He has successfully mentored students to complete in the National Cyber League and the National Collegiate Cyber Defense competitions. Chetan is often invited by the FBI and US Secret Service to provide executive debriefings on cyber and other investigative matters.

Cybersecurity Awareness Month 2020

140 attendees registered for our 5th annual Colloquium on Cyber Security Awareness

Do Your Part #BeCyberSmart

October 9, 2020 9:00 AM to 11:30 AM (a virtual meeting)

Theme: Cyber resilience takes people with awareness, knowledge, and skills. This theme was the emphasis throughout the sessions of the event. People must be equipped with understanding to #BeCyberSmart.

Audience: The audience included

  • individuals interested in any aspects of cybersecurity who wish to #BeCyberSmart
  • professionals in various industries and roles that span information owners, risk and compliance mangers, and cybersecurity pros who want to help their communities to #BeCyberSmart
  • Wisconsin SIM was a co-sponsor and the Milwaukee chapter of ISACA and the Milwaukee Section of IEEE helped to promote this event with their memberships

Format: Do You Part #BeCyberSmart was a virtual meeting that featured the following:

  • an opening Executive Engagement panel
  • two parallel exercise sessions for attendees to develop personal action plans
  • five parallel sessions to discuss important topics in cybersecurity awareness.

Complete details about the program an be found by clicking here.

Presenter & panels: Panelists for the Executive Engagement session included experienced executives with a passion for cybersecurity David Cagigal (former CIO for the State of Wisconsin), Ariel Evans (best-selling author and Risk Management expert), Angela Johnson (CISO at Children's Hospital Wisconsin), and Steve Thomas (VP, Chief Risk and Compliance Officer, Kohl's). The Executive Engagement panel will be followed by two parallel attendee exercises to develop personal action plans and then include five parallel panel sessions on the following topics:

  1. Education Opportunities to pursue careers,
  2. Government Policies (including election security),
  3. a vendor panel on Innovation in Awareness products and services,
  4. awareness of Regulations & Compliance including the new CA regulation,
  5. topics of interest to Women in Cybersecurity

Bio-sketches of panelists and other details about the event are available at this link.

140 attendees registered for various sessions and obtained session-designated tickets ahead of time for the panels of interest. The event was hosted on Teams.

 

2nd Annual Cyber Career Awareness Meetup

Pizza and Cyber Career Stories

On February 4, 2020, with the help of Career Services Center, the Center for Cyber Security Awareness and Cyber Defense sponsored a cybersecurity career awareness event.

The event featured a few short career stories and lots of time for networking. All majors on campus were invited and almost 100 students attended. There were about 40 professionals there that got engaged in the networking.

4th Annual Colloquium on Cyber Security Awareness

OWN IT, PROTECT IT, SECURE IT

October is National Cyber Security Awareness Month and the theme this year is Own it, Protect it, Secure it.

On October 11, 2019, the annual colloquium was held at the Marquette University Alumni Memorial Union. After an introduction by Dr. Heather Hathaway, Dean Klingler College of Arts and Sciences, the Keynote Speaker Dr. Blair Taylor, Towson University and Subject Matter Expert on strategies to increase the cybersecurity pipeline, spoke on Cyber Security Education for All.

After a break, a panel discussed the need for cyber security education. Participants in the panel were Dr Blair Taylor, Mr. David Cagigal, CIO State of Wisconsin, Mr. Byron Franz, Private Sector Coordinator, FBI Mr. Daniel Eliot, Director Education & Strategic Initiatives, National Cybersecurity Alliance.

The panel was followed by "Lightning talks" on Cyber Security Awareness efforts by advisory companies and attendees,.

Keynote speaker Dr. Blair Taylor is an award-winning educator with 20+ years’ experience in academia. She is a national expert in cybersecurity education and curriculum development. She is a faculty member in the Department of Computer and Information Sciences at Towson University, where she has led numerous funded projects. Her work includes Security Injections @ Towson, which provides security modules for integrating security across the curriculum; it is a national model for teaching secure coding to introductory programming students, and SPLASH, which offers Secure Programming Logic for college credit to high school girls.

The program was sponsored by ULINE, the Marquette University Department of Computer Science and the Center for Cyber Security Awareness and Cyber Defense

4th Annual Symposium on the Ethics of Big Data

The annual Symposium on the Ethics of Big Data brings together business and academic leaders interested in examining the implications of bias in analysis, privacy issues in collecting data, and unintended consequences of decision support analysis. The fourth annual symposium was scheduled to coincide with Data Privacy Day, an international observance of the importance of being the custodians of privacy. A snow storm forced delay of the event. It was held May 1, 2019.

The event was organized by the keynote presenter, Dr. Michael Zimmer, an internationally recognized leader in the investigation of data privacy.

'We clearly have entered the era of big data. Armed with petabytes of transaction data, clickstreams and cookie logs, as well as data from social networks, mobile phones, and the "internet of things," a wide range of economic interests, including marketing, health care, manufacturing, education, and government, are now in pursuit of the value of data-driven decision-making. Alongside this increased thirst for big data is an increased public weariness of constant monitoring by internet providers, smart speakers, and GPS chips. Weekly news stories of data breaches, the limitations of data anonymization, and creepy secondary uses of data only add to the public’s anxiety over big data.

The event focused on the privacy implications of big data across a range of contexts, including learning analytics, researcher data practices, and big data research ethics. The symposium had endorsement by the Northwestern Mutual Data Science Institute and was held on May 1, 2019 at the new Cream City Labs, home to the institute.

2nd Annual Cyber Risks, Trends, Predictions

The mission of the Marquette University Center for Cyber Security Awareness and Cyber Defense includes providing cybersecurity knowledge to the community and the university. To inform the community and the university about current cyber risks and defenses on April 20, 2019 we hosted the 2nd annual CYBER RISK, TRENDS, PREDICTIONS. This event, created at the suggestion of our advisory council, presented insights from cybersecurity experts who are leading the efforts inside several premier cybersecurity organizations. The event was designed to equip cybersecurity leadership with knowledge of cyber trends and prediction to help them protect, detect, and respond to threats in their organizations.

The presenters an panels included, Annie O'Leary, Assistant VP in AON's Cyber Solutions Group, Bilal Malik, Stroz Friedburg Senior Consultant, Che Bhatia, a VP in the Stroz Friedburg Resilience practice, Jason Madey is a core member of Carbon Black’s Cybersecurity Strategist “Howlers” team and Josh Yost, System Engineering Manager Palo Alto Networks.

Prior Activity

K12 CAMPS

During summer of 2019, Marquette with the support of KOHL'S held two summer camps for K12 students. One of thee focused on middle school students and the other on high school students. A graduate student in the department designed and conducted these camps. GenCyber responds to a recognized need to develop cybersecurity awareness and teach sound cybersecurity fundamentals at the K-12 levels. The program achieves this by providing grants to universities, public or private schools or schools systems, not-for-profit institutions, or non-profit institutions to conduct in-residence or commuter learning events for students; and providing instruction, instructional materials, and effective teaching methods to middle and high school teachers. Through the support of the national program we hosted a GenCyber camp on July 30, 2018 Through August 3,2018 in Cudahy Hall. home to computer science and cyber security.

IN THE NEWS

Cyber security incidents and scams catch the attention of local media outlets. Faculty from the center have provided expert opinion about these incidents and advice about defenses to the public with the help of the media.