ISC2 New Jersey Chapter Newsletter

Editor-in-Chief: Tran Cheung

Welcome to the ISC2 New Jersey Chapter's March 2024 Issue!

Our goal is to provide the cybersecurity community with monthly New Jersey Chapter news, upcoming events and initiatives, as well as timely and relevant articles from our dedicated member volunteers.

Special thanks to Sharon Kelley and Patricia Guroff for supporting this month's publication!

We invite you to send any comments or suggestions to communications@isc2chapternj.org.

Ken's Korner

Ken's Corner

I thought last month we were busy with our hugely successful Cyber Pathways initiative, but it seems that April we will be even busier!

With the weather getting nicer, our Chapter is jumping head first into Spring with a roar!

We have so many events this month, it's very hard to keep up with them. Besides our normal monthly virtual events, we have two major social events, our community service day event (ISC2gether Day) at the Community Food Bank and an InfraGard event, as well.

Special thanks to Jay Ferron for his amazing talk at our last monthly meeting on the latest revision of the NIST Cybersecurity Framework.

Welcome Aboard!

Welcome New Members!

This month we set a record with 43 new members! 23 are student members!

Welcome Aboard!

Lyra Grands, Meagan Flickinger, Roxanna Cevallos, Brandi Wadsworth, Dhruvi Bhagat, Emilio Rodriguez, Stephen Tharaldsen, Nicole Dunn, Ricky Hernandez, Orv Rody, Joe Patti, Dovar Moultrie, Julio Ruiz, Jonathan Lilly, Riccardo Scarpis, Senthikkumar Ramugounder, Nitin Agarwal, Juliana Mehta, Adam Hoskins, Mark Musone, Abhigna Varada Prasad, Aaron Agcaoili, Ankhi Afroz Howlader, Patrick Gambino, Erika Mancia, Ravi Teja Reddy Kovvuri, Charles Bergman, Mark Russo, Smit Chandrakant Nayak, Paul Krzewinski, Randi Hernandez, Gurpreet Channa, Umer Farooq Mohammed, Noah Jacobson, Daniel Conde, Tomasz Brauntsch, Jordan Bray, Yaw Afuakwah, Daniel Bzura, Kevan Solanki, Joseph Delmas, Rahul Nagpal, Jonathan Mitchell.

Event Recap

Cyber Pathways

The ISC2 New Jersey Chapter wrapped up its first Cyber Pathways initiative last week, which was a 3-week program where over 25 seasoned professionals volunteered their time after work to talk about their area of expertise with other members.

Topics ranged from SOC Analyst, Sales Engineer, Application Security, GRC, Third Party Risk Management, and so many more. This initiative turned out to be so much better than expected, because we kept getting experienced members to volunteer their time.

Kudos to Bryon Singh for organizing this event with his phenomenal team: Derek Allen, SSCP, David “Ola” Komolafe, CISSP, Sammy Cordero and Pradeep Nerupati.

Due to popular demand, we are definitely planning to have this event again in the Fall.

Special thanks to all of our volunteers! Preethi Amurthur, Fritzgerald Alexis, Khürt Williams, Sharon Kelley, Aaron Ferraro, Adnan Rafique CISM/CDPSE, Carlo Balmaceda MBA, CPA, CISA, CRISC, CISSP, CGRC, CCSP, David Moalem, Christopher Callahan, Douglas Reagan, David Garibaldi, CISSP, CCSP, Rupesh Shirke, CISSP, Daniel Greenhaus, Debra Price, CISSP, Sanina Shen, CISSP,PMP,CISA,CGEIT,CRISC,CISM,CDPSE,LBBP, Christopher Lajiness - CISSP, Mareena Verghese - CISSP, CCSP, CISA, CDPSE, Alessandra 💻 Perotti, Dr. Irene Kopaliani CCISO, Michael LeBlanc, Joshua Silberman, Richard Mendoza, Mayur Rele CCISO, CISA, John Linkowsky, CISSP and Senthil C., CCSP, CIPT.

See below for some attendee comments:

“Covered every aspect of cyber. Presentation and Q&A great mix. So much talent expertise and advice, very inspiring.”

“Opportunity to hear different professionals and their experiences. Great fireside style chats.”

“So many mentees take valuable input from mentors, and many great questions are asked after the presentation on the topic is done.”

Incident Response Tabletop Exercise Recap

On March 20th, ISC2 New Jersey Chapter and the New Jersey State Bar Association held its first joint cybersecurity incident response tabletop exercise workshop at Lowenstein Sandler LLP.

During this two-hour workshop, we discussed some important elements of an incident response policy, how to read a cyberinsurance policy, and understand the latest SEC rules, and state / federal regulations.

It was a sold out event with amazing panelists: Michelle Schaap, Kimberly Parson - Member NY, NJ, PA Bars, Trina L Glass, Morgan Jones, CIPP/US/E, CIPM, PLS and myself as moderator.

Big shout out to our facilitators: Ivy Orecchio, Edwin A. Brockner, FIP, CISSP-ISSAP and Alex Waintraub.

This event would not have been possible without our fantastic sponsors, Rapid7 and Optiv! We were very appreciative, especially since the food was so good.

Looking forward to doing this again, next year!

NJIT Capture The Flag Event

On March 23rd, over 1,100 participants took part in the 4th annual JerseyCTF competition. ISC2 New Jersey Chapter was one of the sponsors this year. The competition included presentations and panels with industry and government speakers, with divisions for students and open participants. JerseyCTF has grown from a local Newark, NJ event to one in which teams from around the world compete for prizes.

Shout Outs

Member Spotlight - Dovar Moultrie

My name is Dovar Moultrie, a native of the Bahamas with ancestral ties to the Turks and Caicos Islands, a British Overseas Territory and a gem of the Caribbean.

Embarking on a professional path as a police officer with the Royal Turks and Caicos Islands Police Force, I eagerly joined the IT department, where I quickly made my mark. My efforts were recognized when UK senior investigators identified my skill set during a collaborative effort on serious incidents, leading to my role in establishing the Digital Forensics Department in 2020, a notable highlight in my career.

Now residing in New York since 2023, I am continuing my studies while actively seeking roles in Digital Forensics and Cyber Security, eager to further refine my expertise in digital investigation.

My sports career has been equally fulfilling. Representing the Turks and Caicos Islands in Men's 10m Air Pistol shooting at the XXI Commonwealth Games in Gold Coast, Australia, in 2018, was an honor. My university years introduced me to archery, a sport that captured my heart despite its differences from air pistol shooting. This new passion led me to represent my university successfully and later the Bahamas National Team at the European Grand Prix in 2023. As a world-class archer, I am now focused on achieving my ultimate goal: becoming an Olympic and World Champion archer.

Upcoming Events

Spring Bowling Event - SOLD OUT

Break out your bowling shirt, choose your lucky bowling ball and join us for a frame or two at our April 9th bowling event at Bowlero.

This SOLD OUT event is sponsored by Acronis.

Public Speaking Workshop

Date: Thursday, April 11th, 2024
Time: 7:00 p.m. to 8:00 p.m.
Location: Virtual Event

Register here.

Spring Happy Hour - April 17 - SOLD OUT

Join us for a night of fun! Play a round or have a round at our April 17 happy hour.

We'll be practicing our swings at Topgolf in Edison NJ on April 17th from 6-8pm!

New Member Welcome Meeting - Virtual Only

Are you a new or nearly new NJ Chapter member? If so, join one of our upcoming orientation (welcome) meetings, where you can learn about all the chapter benefits and ask questions about membership. Our membership co-chairs, Sharon and Sam run this virtual welcome meeting on the third Thursday of each month.

Click here to register for our next welcome meeting on Thursday, April 18th at 6pm. The meeting will last approximately 20 minutes and will be recorded and sent to new members who weren't able to join.

InfraGard April Meeting

Join us for an insightful and engaging online and in-person event that delves into the crucial realms of business continuity planning and cloud security.

Securing the Future: Business Continuity Planning and Cloud Security

Date: Thursday, April 18th, 2024
Time: 5:30 p.m. to 8:00 p.m. ET
Location: Lowenstein Sandler, Roseland NJ (Hybrid Event)

Register here.

ISC2gether Day 2024 - Community FoodBank of New Jersey - SOLD OUT

Our community service day for 2024 at the Community FoodBank of New Jersey is SOLD OUT! Thank you to all who have registered!

Date: Saturday, April 20th, 2024
Time: 11:30 a.m. - 1:30 p.m.
Location: Community FoodBank of New Jersey, 31 Evans Terminal Road #1, Hillside, NJ 07205

ISC2 New Jersey Chapter April 2024 Meeting

Don't miss the April member meeting speaker lineup!

Speaker #1: Thaddeus Johnson, Assistant Professor in Criminology & Criminal Justice

Topic: Criminal Justice and AI

Speaker #2: David Garibaldi, Cloud Engineering and Strategic Advisory, AWS Security, Risk & Compliance

Topic: Demystifying Cloud Security Consulting and Engineering

Date: Thursday, April 25th, 2024
Time: 6:00 p.m. - 8:00 p.m.
Location: Virtual Event

Register here.

Spring 2024 Picnic

Mark your calendars now for our Spring Picnic!

Date: Saturday, May 18th, 2024
Time: 12 p.m. - 4 p.m.
Location: Roosevelt Park, Edison, NJ
Cost: FREE!

Register here.

ISC2 New Jersey Chapter May 2024 Meeting

Speaker: David Hutchens
Topic: The Storytelling Leader

Date: Thursday, May 30, 2024
Time: 6:00 p.m. to 8:00 p.m.
Location: Virtual Event

SECON New Jersey 2024 - Securing the Connected World

SECON New Jersey 2024 is open for registration!

Visit our website here.

We are happy to announce keynotes by Dr Erdal Ozkaya, Group CISO at MAVeCap, Gurdeep Kaur, CISO at PSE&G, Ira Winkler, Field CISO for CYE Security, Michael Geraghty, CISO at State of New Jersey and Stan Mierzwa, Asst. Director and Lecturer at Kean!

Join us for these phenomenal speakers as well as many other speakers and panels.

Event: SECON NJ 2024
Date: Thursday, June 13th, 2023 | 9:00 a.m. to 5:00 p.m.
Location: Kean University, 1075 Morris Avenue, NJCSTM/STEM Building, Union, NJ 07083
Virtual Location: gather.town

Register here.

SAVE THE DATE - NY Metro Joint Cybersecurity Conference - October 10th, 2024

NY Metro Joint Cybersecurity Conference.

The 2024 NY Metro Joint Cyber Security Conference will be held on October 10th, celebrating our 11th year featuring keynotes, panels and sessions aimed at educating everyone on the various aspects of information security and technology. Workshops featuring in-depth extended classroom-style educational courses to expand your knowledge and foster security discussions will take place the same day.

Call for Speakers

Volunteer Opportunities

Be an active part of our community!

Discord Volunteer, sign up here.

SECON volunteers, sign up here.

Education Committee volunteers, sign up here.

Current Initiatives

Join Our Discord Server!

We now have roughly 500 members on our Discord Server!

By adding a Discord server to the mix of our communication tools, we now have real-time collaboration between our members 24/7. Looking for a job or for some advice on bettering yourself on the job? Find it here!

Our Discord Server is a dynamic hub for job seekers, offering firsthand job opportunities in various IT and Cyber positions from chapter members. It's also a resource for members seeking internships, aiming to enhance their skill sets, or wanting to share resumes for reviews and feedback (including interview skills assistance). In addition to our website and newsletter, we announce upcoming events through Discord Server notifications. You'll receive regular reminders, so you won’t miss out on our engaging events! Moreover, our mentorship program is hosted on Discord, facilitating interaction with mentors during your cohort.

For those members that want to communicate on a variety of topics between meetings using Discord, just send Ken an email at president@isc2chapternj.org to get the link.

We are looking for volunteers to help make Discord a better and fun place. Please reach out to Bryon Singh at bryon@isc2chapternj.org with ideas or ping him on Discord!

The members of the Discord Committee are Bryon Singh, Tran Cheung, Giovanni Mercado, John Linkowsky , Krishna Nekkalapudi, Matthew Lang, Michael LeBlanc, Nikunj Shah, Brett Smith and Saurabh Sagdeo.

Chapter Member Interview by Bryon Singh: Aaron Ferraro, Cyber Security Analyst | GCIH | GCIA | GPYC | GSEC | GISF | GFACT | Security+ | Air Force Veteran

Bryon: Tell me about yourself?

Aaron: I'm a father, husband, and always striving for self-improvement. Currently, I serve as the sole cybersecurity analyst at Federal Farm Credit Bank Funding Corp, where I handle various tasks, including vulnerability management and SOC monitoring. With a background in the Air Force, I've been passionate about cybersecurity for about 5 years. I'm completing my degree in Applied Cybersecurity from SANS Technology Institute, focusing on enhancing my skills in threat hunting.

Bryon: How do you stay updated with the rapidly evolving cybersecurity landscape?

Aaron: I rely on curated cyber news sites, Discord groups, and webinars to stay informed. I dedicate 1-2 hours weekly to learning something new to stay ahead. Crucially, I employ a strategy of listening and doing, continuously learning from others and immediately applying newfound knowledge.

Bryon: What recent trend in cybersecurity significantly impacts the industry?

Aaron: The pervasive threat of ransomware is a significant concern. I emphasize security awareness training, prompt patching of vulnerabilities, and continuous learning to stay abreast of evolving threats.

Bryon: Can you share an experience educating non-technical staff on cybersecurity practices?

Aaron: Simplifying technical concepts and emphasizing practical risk mitigation strategies without causing alarm proved effective. I engaged them by illustrating potential risks and demonstrating measures to mitigate them, fostering understanding and cooperation.

Bryon: What's the most complex cyber threat you've encountered?

Aaron: Encountering Black Basta Ransomware underscored the importance of understanding network baselines and proactive threat hunting. Through a coordinated response, including alert monitoring and collaboration with IT teams, we successfully contained and eradicated the threat.

Bryon: How did you like mentoring in Cyber Pathways?

Aaron:. Mentoring in Cyber Pathways was fulfilling. Sharing insights with aspiring cybersecurity professionals and witnessing their career growth was gratifying.

Bryon: What tips can you give cyber professionals?

Aaron: Forge connections with mentors, dedicate time to continuous learning, prioritize self-care, and pursue your passions within the field for sustained success

JuMPstart Mentorship Program

Dear Members,

As we continue to enhance our mentoring program, we're exploring software tools aimed at improving the mentor-mentee experience. Our focus is on finding a solution that facilitates effective collaboration, learning, and progress tracking, all while considering the costs to keep the program accessible. We are in the early stages of this exploration, we expect more details on the software and its integration will be shared in our next update.

We're pleased to report that the program is progressing well, thanks to the dedication of our participants. Your feedback and participation are crucial as we work towards enriching our cybersecurity community. Stay tuned for more updates and thank you for your ongoing support.

Get Involved:

Interested in mentoring? Join our dynamic roster by signing up here.
Your feedback shapes our program. Reach out at mentoring@isc2chapternj.org.

Warm regards,
Matthew Lang and The Mentorship Committee

Educational Training

NYU and ISC2 New Jersey Chapter

The ISC2 New Jersey Chapter and the New York University Tandon School of Engineering have formed a partnership to further educational and credentialing opportunities for students and the cybersecurity community.

In addition to participating in NYU Tandon events, lectures, career fairs, and other professional development activities, ISC2 will offer students a full membership for $10, giving them access to a network of local industry leaders. As part of the agreement, ISC2 members can sign up for The NYU Center for Cybersecurity (CCS) mailing list to stay current with research and events featuring leading faculty and industry partners at cyber.nyu.edu.

To learn more about this program, click here.

Upcoming Presenters

Thaddeus Johnson

Thaddeus L. Johnson is an Assistant Professor in Criminology & Criminal Justice at the Andrew Young School of Policy Studies at Georgia State University and a Senior Fellow for the Council on Criminal Justice. He draws on his experience as a former ranking law enforcement official to examine topics related to police innovations, urban violence, corrections, and criminal justice policy.

David Garibaldi

David Garibaldi is a Security Leader with a focus in Cloud Engineering and Strategic Consulting, Advisory and Research. He is currently a Team Lead in Amazon Web Services Security Risk & Compliance Team.

Notable Cybersecurity Events

Spring Camp ISC2 and WiCyS

Join Adaeze Udoh (WiCyS) and Alicia Williams (ISC2) for an informational webinar for the WiCyS + ISC2 Certified in Cybersecurity Certification Spring Camp.

Clicking here to register for this webinar!