RSS Alerts

Share

More services

Related Links

Related Stories

  • 2011 UK Infosecurity Virtual Conference – Confirmation of Conference Programme
    We are pleased to announce the details for our Infosecurity 2011 UK autumn virtual conference, to be held on 27th September 2011. This one-day event will bring together a series of topical keynote sessions direct to your computer and gives you the flexibility to learn about the latest information security trends and challenges from wherever you are in the world.
  • Global Security Challenge finalists announced
    The organisers of the Global Security Challenge have announced the regional finalists for the competition. In parallel with this, the organisers say that, owing to an exceptionally high number of top quality British entrants, they have created a UK-only region section of the challenge for the first time.
  • UK Cyber Security Challenge gears up for second year of competitions
    Hundreds of aspirant cybersecurity professionals are to compete to prove their credentials in coming days as the new programme of Cyber Security Challenge competitions kicks off.
  • Security at the dawn of a new age in computing
    A new age of “anytime” and “anywhere” computing, combined with “any device” has brought with it new challenges for enterprise security. Join Infosecurity for our Virtual Conference session on “Security in the Age of *Any* Computing” to explore this timely topic.
  • Jericho Forum professional explains challenges ahead in digital security
    James Whyte, head of IT service delivery with F&C Investments, and a member of the Jericho Forum, says that there is now a clear need for an effective - and secure - digital ecosystem in cyberspace.

Top 5 Stories

News

New stage of Cyber Security Challenge kicks off this week

13 September 2011

The organisers of the Cyber Security Challenge say that a new stage in the challenge starts this week, in which entrants will be required to test their skills to defend against web attacks.

As reported previously, the CSC - which is now in its second year - is backed by a consortium of UK commercial, academic and public sector organisations, and is run along similar lines as the US Cyber Challenge launched back in 2009.

The competition challenges are being designed by industry leaders using the latest technology to test the nation's cyber security skills and identify the UK's future cyber security professionals.

In this week's stage of the CSC, around 700 UK amateur cyber defenders will show off their skills in competitions designed by the SANS Institute and Sophos, and which will examples of real-life cyber attacks to assess competitors' knowledge of infrastructure security.

The new competition, say the organisers, includes a focus on the kind of vulnerabilities within domain name systems (DNS) that allowed the websites of more than 200 companies including The Daily Telegraph, UPS and Vodafone to be attacked by Turkish hackers earlier this month.

James Lyne, director of technology strategy with Sophos said that the impact the Turkish attacks had on established corporate websites highlights that DNS and web-servers are an increasingly vital part of an integrated security strategy.

“The next generation of cyber defenders must be well versed in these systems as part of their broad understanding of cyber threats and have the skills to safeguard and protect them. This is why we've worked with SANS Institute to develop this competition for the Cyber Security Challenge UK”, he said.

“We are hoping to find people who can handle these situations, identify and remove vulnerabilities and put in place strategies to minimise both the time a system is compromised and the ultimate risk to its users”, he added.

The competition itself, he explained. takes the form of a quiz testing candidates' knowledge on a broad range of topics related to managing infrastructure securely, and their ability to identify and remediate flaws that could be abused.

Competitors will require knowledge on networking, websites, databases and email servers on multiple operating systems and platforms.

Over at the SANS Institute, meanwhile, Terry Neal, the training group's EMEA director, said that some competitors may be surprised to find a quiz based penetration test rather than the usual format which sees attacks fired at a system to uncover weaknesses.

“We are trying to test their knowledge of a broad range of potential vulnerabilities and assess how they put their expertise to use. In this way we are examining the aptitude to develop counter attack strategies as well as the raw knowledge of the technologies that will serve candidates well in later rounds of the Cyber Security Challenge UK”, he said

Plans call for the winner - and a number of other high achieving candidates - from this week's competition will qualify for the next stage of the challenge, the SAIC CyberNEXS-King of the Hill competition, which takes place in January.

This article is featured in:
Security Training and Education

 

Comment on this article

You must be registered and logged in to leave a comment about this article.

Terms & Conditions |Privacy |Website Design|Reed Exhibitions. All rights reserved. Copyright © 2012