Editor-in-Chief: Tran Cheung
Notes From Communications Team
Welcome to the (ISC)² New Jersey Chapter's October issue!
Our goal is to provide the cybersecurity community with monthly New Jersey Chapter news, upcoming events and initiatives, and timely and relevant articles from our dedicated member volunteers.
We hope you enjoy reading this publication and invite you to send any comments to communications@isc2chapternj.org.
Tran Cheung, Andrew Haratine, and Andrew Wong
Ken's Korner
Ken's Korner
Just this month, the size of our organization grew by leaps and bounds, as we got 24 new members. Now, our current paid membership count is at 190!
But what really impresses me more, is that our members have really stepped up now and turned our org into a full-blown community. The volunteerism that I have been seeing lately from our members is at its peak and I am so excited to be a part of it.
If you want to get more involved with one of the current or future events, please reach out to me and I'll plug you into one.
Can't wait to see what next month will bring!
Click here to see October's picnic pictures! Thanks again Prabhakar!
ISC2 NJ Chapter
Welcome Aboard!
New Chapter Members!
Luisa Cassanello, Raymond Blaine, Pete Manzetti, Bryon Singh, Larry Jacobson, Marie Ivanov, Mark O'Reilly, Claudia Hernandez, Robinson Grullon, Adetola Tedunjaye, Ramya Rajendran, John O’Donnell , Daniel Torres, Daniel Schoenberg, Eric Coan, Andrew Waintraub, Sean Kirk, Doug Kersten, Jim Ambrosini, Chris Lajiness, Decanda Faulk, Meossha Myrick, Katherine Morris, and Pranith Shetty.
ISC2 NJ Chapter
Upcoming Events
November 2021 - Public Speaking Workshop - MEMBERS ONLY
Do you want to want to work on your public speaking skills?, then this is your opportunity!
We have a monthly public speaking workshop to give everyone a chance to work on their impromptu and prepared speech skills in a safe space.
Please sign up to be a member of our local Chapter before registering for this event
Date: Thursday, November 11
Time: 8pm - 9pm
Location: Online Event
Conducted by Steven Santamorena, Arthur Hedge, and Ken Fishkin
Click here to register.
eventbrite.com
November 2021 - Meeting Agenda
Date: Thursday, November 18
Time: 6pm - 8pm
Location: Online Event
Interview: Alex Waintrub – Incident Response Lead - Arete
Roundtable Discussion - BISO:
Nicole Dove - BISO - Warner Media
Jose Lagdameo - ASIA BISO - Prudential Financial
Click here to register.
eventbrite.com
December 2021 - Meeting Agenda
There will be no speakers at this meeting, as we'll take this opportunity to give everyone a chance to get to know other members and play some games, as well. We'll meet at our usual virtual watering hole, Gathertown. Also, we'll have some of our members conduct a resume workshop.
More to come about this event!
Date: Thursday, December 16
Time: 6-8pm
Location: Gather.town
January 2022 - Meeting Agenda
Date: Thursday, January 27, 2022
Presenter:
ISC2 NJ ChapterRafal Los – Podcaster of Down the Security Rabbithole
Volunteer Opportunities
Volunteer Positions and opportunities
- Want to be a mentor? Please reach out to Ken Fishkin at president@isc2chapternj.org.
- Not sure what you can offer, but want to help grow and improve our organization? Please reach out to Ken Fishkin at president@isc2chapternj.org.
Holiday Social
(ISC)² New Jersey Chapter Holiday Dinner
Come join us for our Holiday Dinner sponsored by IGI CyberLabs
Date: Wednesday, December 8
Time: 6pm - 10pm
Location: The Brown Stone, Metuchen, NJ
Cost: $25/members $50/non members (open bar included)
This event will have tent seating with heaters.
It is a 5 minute drive from the Metuchen Train Station.
Please R.S.V.P. by December 1st
Click here to R.S.V.P.
eventbrite.com
Current Initiatives
Jumpstart Mentorship Program (JuMP)
We wrapped up our first series of JuMPstart Mentorship Program (JuMP) with 30 Mentors and Mentees! Thank you to everyone participating in the program and for making it a success!
Here is some amazing feedback from our first JuMP Series participants!
"Great information sharing. Learned that Krishna had his CCSP (which I am currently pursuing) and he mentored me!" John Linkowsky (Mentor)
"Matt had a lot of good information to share, different books and podcasts to dive into. Additionally, he was very relatable, specifically to situations we both find ourselves in. He was also just generally easy to talk to." Richard Ingordo (Mentee)
"David provided a lot of insight about leadership, shared a few pointers to understand the job market, his journey towards PhD and how he motivates himself." Disney Paul (Mentee)
Now, we just kicked off our second JuMP Series, that will run from 11/1/2021 through 4/30/2022! Each Mentee will have the opportunity to meet multiple Mentors during this series.
For those that are interested in participating in this rewarding program as either a mentor or mentee, you can sign up here.
If you have any questions or want to learn more about the program, please reach out to the JuMP Mentorship Committee at mentoring@isc2chapternj.org.
forms.gle
iQ4 Volunteer Mentoring Program
Introducing our new college/high school mentoring opportunity with iQ4! You do not need previous mentoring experience to sign up. Currently, students are taking courses on topics such as insider threat, ethical hacking and cloud security.
Please sign up here if you are interested in being part of this fun and rewarding program. CPE credits will be given as well!
google.com
NYU and (ISC)² New Jersey Chapter Partnership
The (ISC)² New Jersey Chapter and the New York University Tandon School of Engineering have formed a partnership to further educational and credentialing opportunities for students and the cybersecurity community.
In addition to participating in NYU Tandon events, lectures, career fairs, and other professional development activities, (ISC)² will offer students a full membership completely free giving them access to a network of local industry leaders. As part of the agreement, (ISC)² members can sign up for The NYU Center for Cybersecurity (CCS) mailing list to stay current with research and events featuring leading faculty and industry partners at www.cyber.nyu.edu.
In collaboration with industry partners on the NYU Tandon Advisory Council, NYU Tandon School of Engineering will offer an astounding scholarship to (ISC)² members regardless of their country of residence.
The NYU Cyber Fellowship program is an elite, highly-technical Cybersecurity Master's Degree extends qualifying students with a scholarship that covers 75% of their tuition for the 10-course, part-time program. Additionally, the partnership will present a 15% off tuition to other online or on-campus graduate degree programs. As member-students will also be able to access networking and mentorship events with the (ISC)² New Jersey Chapter.
NYU Tandon has open enrollment for members looking to apply to NYU Cyber Fellows for the Fall or Spring semesters. There is NO GRE required (graduate admission guidelines apply) and they have also streamlined the application process which only takes 15 minutes with a decision in 15 days. Simply:
- Gather a Resume, a Statement of Purpose (250 words), an unofficial Transcripts, name two References
- Start application
- Enter application fee waiver code (worth $90) NYUTO21
- Choose MS in Cybersecurity, part-time program, and answer YES to the question about 'applying for Cyber Fellows’
- Review and Finalize - “SUBMIT”
To learn more about enrollment or if you have any questions, please contact tandon.online@nyu.edu. You can also call (646) 997-3623.
NYU and (ISC)² NJ Chapter
Member Contributions
Optimizing Digital Identity Experiences for an Accessible Future: Author - Kapil Bereja
Although this famous New Yorker cartoon was first published in 1993,1 it remains true even today. Despite a quarter-century of advances in Internet technology, there is still no easy way to prove online that you are not a dog, are over 18, live at a certain address, graduated from a certain school, work at a specific company, or own a specific asset. These kinds of assertions about ourselves (the identity owner), known in the digital identity industry as claims, are difficult to trust because they are nearly impossible to verify.
Continue reading by clicking here
linkedin.com
My Take On the Importance of Certifications: Author - Ken Fishkin
Since 1996, I have been pursuing industry certifications. I have always found them to be an essential part of my career growth, because I use them as entry points to learn new skills that seem challenging. While I know that practical experience is much more important than obtaining these certificates, I have found that the process of obtaining certificates first, gives me the confidence boost I need to immerse myself in whatever area I am studying. For example, in 2007, I passed the gold standard of cybersecurity certifications, the Certified Information Services Security Professional (CISSP) with little experience in the cybersecurity field, but a strong knowledge in network engineering.
Continue reading by clicking here
iltanet.org
Supporter
nodeware
The (ISC)² New Jersey chapter has worked with IGI CyberLabs to provide our members with the opportunity to receive a discount on Nodeware®, an award-winning Vulnerability Management solution that scans networks to identify critical vulnerabilities. Nodeware’s continuous monitoring with no impact on your network provides you the ability to receive immediate vulnerability alerts.
We have negotiated a discounted price which enables (ISC)² members to use the tool for about $1/month per device.
Contact John Bifarella to coordinate the purchase and set up your demonstration or free trial. Learn more about Nodeware at www.nodeware.com
nodeware.com“Vulnerability management is one of the first pieces you need to take to get on the road to sound cybersecurity practices. IGI's Nodeware tool allows companies to perform continuous scanning with reporting that helps companies manage their risks more efficiently.” - Ed Amoroso, Cybersecurity, CEO of TAG Cyber
Educational Training
CCSP Study Group
All (ISC)² NJ Chapter members are welcome to join us for this CCSP study group that will be held on a weekly basis, starting on December 4th.
6 week program (excluding holiday weekends)
Dates: Saturdays on 12/4, 12/11, 12/18, 1/8, 1/15 and 1/22
Time: 9-11am
Location: Online Event
Click here to register.
eventbrite.com
Practical Hacking: Testing the OWASP Top 10
Date: Wednesday, November 17, 2021
Time: 9am - 4pm
Location: Online Event
Cost: $10 for members and $25 for non-members
CPE: 4.5 CPEs
Application penetration testing can be a daunting task. In fact, the OWASP web security testing guide defines over a hundred tests that need to be conducted for a comprehensive security assessment. During this practical training session we'll distill these tests down to OWASP's top 10 vulnerabilities and manually explore how to identify and exploit each one in real-world applications. Attendees will only need a basic understanding of web technologies to be able to participate.
Click here to register.
Objectives:
- Learn how to set up and configure tools required to conduct web application penetration testing
- Learn basic and advanced OSINT reconnaissance techniques to gather information against a target domain
- Understand the testing methodology in both un-authenticated and authenticated contexts
- Exercise exploiting vulnerabilities using industry tools and techniques
- Understand remediations for the OWASP top 10 vulnerabilities
Tentative Schedule:
8:45 AM - Registration
9:00 AM - Session begins
10:30 AM - Break
10:45 AM - Session Resumes
12:00 PM - Lunch
1:00 PM - Session Resumes
2:30 PM - Break
2:45 PM - Session Resumes
4:00 PM - Session Ends
Trainer: Cornel Du Perez
Cornel is an established subject matter expert in offensive security and serves as the Founder and Managing Director of Abricto Security. In this role, he oversees the strategic growth and development of the firm. On top of spear-heading new service development, he leads team training initiatives, hunts for top talent and builds the Abricto Security brand. Cornel is involved in the open-source community and he regularly presents at regional security conferences where he shares his experience and lessons learned.
eventbrite.com
Upcoming Presenters
Alexander Waintraub - Incident Response Lead
Alex Waintraub is an incident response lead at Arete, with over 10 years of experience in information technology, security operations, and incident response. He possesses in-depth knowledge of security analytics and has worked on small-and large-scale cyber incidents. Over the last 5+ years, he has been managing and leading security operations while triaging, validating, and defining escalations for various security incidents. Alex has enhanced various security operation centers, incident response plans, cyber threat hunting teams and threat intelligence operations.
Prior to joining Arete, Alex worked as part of multidisciplinary teams delivering cybersecurity operations and privacy response services to multiple global retail and commercial enterprises. He graduated with a bachelor’s in Information Technology and Network Security from New York Institute of Technology.
linkedin.com
Nicole Dove - Cybersecurity Leader
Nicole Dove is a cybersecurity leader, university lecturer & host of the Urban Girl Corporate World podcast with over 17 years of experience across various industries. As BISO at WarnerMedia, she collaborates with executives to manage the cybersecurity programs of news, sports and entertainment platforms including CNN, Bleacher Report, NBA TV and Turner Sports. She performed voice over work on two Grand Theft Auto titles and attended the 2016 White House Summit on the United State of Women. She is studying Cybersecurity Leadership at Harvard University, creating a LinkedIn Learning course on Supply Chain Attacks, a frequent guest on tech podcasts and has given keynotes at tech conferences and organizations including Facebook, Yale School of Management, Deloitte Consulting and Goldman Sachs.
linkedin.com
Jose Lagdameo Jr. - Director of Information Security
Jose is a Director of Information Security for Prudential Financial, working within the PII BISO team. He has been in the Information Technology for more than 20 years, with 13 years as the Information Security Supervisor for Plymouth Rock Assurance. He has been involved in achieving PCI compliance, worked on third party security and risk assessments, penetration testing, and assisted with internal audit reviews of information system security and architecture. He is a proven leader and asset in the security space, always willing to go the extra mile to get the job done. He has a master’s degree in Cybersecurity and Information Management along with several security certifications.
linkedin.com
Recordings and Slides From Prior Meeting
October Monthly Meeting
Bernardo Vasquez - Advisory CISO - Palo Alto Networks - Video
October Cyber Careers Panel - Cybersecurity Challenges - Video
Please visit https://www.isc2chapternj.org/ to access previous meeting recordings.
ISC2 NJ Chapter
Board of Directors
(ISC)² New Jersey Chapter 2021 Board of Directors
President:
Ken Fishkin
President@isc2chapternj.org
Secretary:
Mallik Prasad
Secretary@isc2chapternj.org
Treasurer:
Priyanka De Abrew
Treasurer@isc2chapternj.org
Education Director:
Jose Lagdameo
Director@isc2chapternj.org
Membership Chair:
John Manley
membership@isc2chapternj.org
Communications Chair:
Tran Cheung
Communications@isc2chapternj.org