IDS 493

Skills

Network Security Control

One of the skills I have acquired in my academic journey is network security control. Network security control is a technical skill encompassing the mechanisms. It measures an individual or organization puts in place to protect the network system infrastructure from unauthorized access, attacks, and data breaches. In my academic journey, I have learned the software and hardware solutions together with the configurations or processes to protect the network system. The various courses I have pursued, particularly CYSE 300, have helped me to develop my network security control proficiency.

Communication

Apart from acquiring network security control skills, my academic journey has allowed me to acquire communication skills. Communication is an indispensable skill I have developed in my educational journey at Old Dominion University. This skill has played a pivotal role in my academic and professional success. Communication skills encompass verbal communication, written communication, and non-verbal communication. Throughout my academic journey, I have learned to present my arguments clearly and concisely, verbally and non-verbally. Each course and learning activity I have completed, including the assignments in this course, has offered an opportunity to learn more about effective communication, enabling me to enhance my communication skills.

Creativity

Creativity is the third skill that I have acquired over the years in my academic journey. This skill refers to the capability to think about an issue or task differently. It employs imagination to develop new ideas to address a problem. Creativity plays an essential role in innovation, problem-solving, and realizing success in many professions, including in my field. Reflecting on my academic journey, I have developed this skill over the years through studying and completing assignments that entail applying creativity.

Resume

Reflection

Reflection on Personal Skills and Artifacts

Stephen Antwi

Old Dominion University

E-Portfolio Project

Instructor: Dr. Phan

12/7/2023

Abstract

This reflective essay explores the synthesis of skills gained through different disciplines in my academic journey, unraveling the interdisciplinary nature that has positively impacted my career readiness. The reflection focuses on three skills and three artifacts drawn from various disciplines. These artifacts collectively exemplify how various disciplines have contributed to developing my skills. The analysis entails discussing each skill and an artifact demonstrating my mastery. Also, the analysis includes how I solved the problems I encountered in creating the artifacts and how other courses helped me complete the assignments. The essay concludes with insights into how this interdisciplinary foundation positions me as a versatile professional, ready to navigate the complexities of the evolving professional landscape.

Reflection on Personal Skills and Artifacts

Introduction

As I reflect on my academic journey in Cybersecurity, it is evident that the interdisciplinary nature of this field has equipped me with diverse skills and allowed me to complete many artifacts in readiness to join the workforce. Some skills I have learned in my degree program include network security control, communication, and creativity. Network security control comes from cyber security and computer science, while communication comes from all disciplines. Creativity skills come from many fields, including psychology and marketing. This reflective essay analyzes the skills I have developed and the artifacts I have produced in my academic journey, focusing on how each contributes to my career readiness.

Network Security Control

An artifact I have created that demonstrates my proficiency in network security control is the “MITRE ATT&CK Framework Project.” In completing this project, I had to apply the knowledge I had gained about network security control. However, completing the project taught me more about network security control. First, in evaluating the MITRE ATT&CK Framework, I learned about three attacks under this model – Tactics, Techniques, and Procedures. Also, while completing the project, I learned how an organization can use the MITRE ATT&CK Framework to secure its network from cyber-attacks.

As I completed the MITRE ATT&CK Framework project, I figured out the process or solved the problems I encountered by following a systematic approach to problem-solving. The approach entailed assessing the Port of Virginia’s network vulnerabilities and potential threats and developing a comprehensive security strategy relying on the MITRE ATT&CK Framework. I also applied security controls and conducted rigorous tests to enhance the defense systems.

The MITRE ATT&CK Framework project showcases the interdisciplinary nature of network security control by showing that the development of this skill draws from different fields, including Cybersecurity and computer science. For example, my coursework in cyber security allowed me to comprehensively assess the model and apply it in an actual situation. At the same time, computer science helped me to design secure network architectures using the framework. Also, the cryptographic algorithms, TCP/IP protocols, and subnetting drawn from the two disciplines provided me a better foundation to understand the network security controls needed to secure the Port of Virginia’s network system using the MITRE ATT&CK Framework.

Proficiency in network security control skills aligns with the job requirements outlined in many job advertisements like the Cybersecurity Engineer. Many job ads usually list the capability to implement the encryption protocols and configure firewalls. It will also help me perform the assigned duties more effectively because Cybersecurity professionals focus on securing the organization’s network.

Communication

An artifact that exemplifies my communication skills is my internship report at the Port of Virginia. This report provides a detailed account of my experience at the Port of Virginia. While writing this report, I discovered the significance of conciseness and clarity in communication. Writing this report taught me how to craft well-structured messages that convey my ideas effectively. For example, while communicating my internship evaluation, I crafted short sentences that shared how the internship helped me fulfill my objectives. In addition, writing the report allowed me to learn how to adapt my communication style based on the target audience’s needs.

While writing the internship report, I solved my challenges by applying problem-solving skills. Whenever I faced ambiguity, I contacted my instructor for clarification and guidance on how to write the report. The experience underscored the significance of verbal and non-verbal communication because I had to contact my instructor frequently. Also, I had to follow the guidelines I received to write a comprehensive internship report that followed the instructions.

Also, while completing the internship report, I applied the courses or theories I had previously learned. For example, I applied informative communication principles to help the audience understand my experience at the Port of Virginia. Besides, I applied the knowledge I had gained in cyber security to bolster my arguments, especially when discussing the application of Cybersecurity knowledge during the internship. Additionally, the psychological aspects of communication helped me tailor my arguments to resonate with the diverse perspectives when discussing the internship’s motivating, discouraging and challenging aspects. I learned about the need to consider multiple perspectives on any issue in psychology.

Communication skills are necessary for my career goals since an analysis of job advertisements in my field revealed a consistent demand for people with effective communication skills. Most organizations seek candidates who can articulate ideas clearly and collaborate seamlessly with other employees. Therefore, communication is a fundamental skill highly connected with my career. Also, communication is associated with my career because I am expected to communicate complex concepts to non-technical and technical stakeholders.

Creativity

An artifact that I created that exemplifies my creativity skills is the “Visual Mechandization Capstone Project.” This project entailed designing a store selling apparel and footwear. It focused on using different store design elements like lighting, texture, and music to create memorable customer experiences. In creating the artifact, I used creativity to create display windows, store layout, and focal point displays that can attract customers and promote sales in the store. The artifact’s creation allowed me to explore and improve my creativity. By completing the project, I learned that creativity is not limited to artistic endeavors; it encompasses critically linking disparate ideologies and generating new solutions. Also, I learned that creativity involves embracing failure and using it as a steppingstone to become more innovative. I had to design many store layouts before choosing the final one for grading, which allowed me to discover that creativity entails making several trials.

Creating the “Visual Merchandisation Capstone project” presented some challenges, but I solved them using the five-step problem-solving process. This process involved identifying the problem, generating probable solutions through brainstorming, selecting one solution, implementing the chosen solution, and evaluating the results. Also, I established regular feedback loops to continually refine and improve the creative output until I created store designs that met the grading rubric requirements.

The first course that helped me create the artifact was marketing. I applied the marketing concepts of attracting customers to design a store that could attract customers and make them buy the items on display. The other course I applied to was psychology. I used psychological theories to generate different ideas on how to display products that appeal to different customer categories.

Creativity skills are necessary for my career because Cybersecurity job ads emphasize the need for Cybersecurity professionals to be innovative and able to solve intricate problems. The creation of the artifact honed my capability to think critically and creatively, a skill that can enhance my chances of securing jobs in my field and succeeding at the workplace.

Conclusion

The interdisciplinary methods and theories were crucial to my understanding of coursework because they allowed me to gain a more comprehensive and holistic understanding of the coursework concepts. I expanded my knowledge base and developed a better skill set by integrating perspectives from various disciplines. The interdisciplinary methods enabled me to approach assignments from multiple viewpoints by drawing insights from various disciplines. I combined theories and frameworks from different disciplines to comprehensively complete projects and assignments. Courses such as IDS 300W offered me a foundation for synthesizing multiple perspectives from different disciplines. They equipped me with valuable knowledge on how to navigate multifaceted topics and present findings in a precise and coherent way. Eventually, being an interdisciplinary thinker is critical in my field because real-world problems are complex and usually demand holistic solutions. Therefore, embracing interdisciplinary approaches makes me better positioned to address these problems.

Job Advertisement Analysis

Stephen Antwi

Old Dominion University

IDS493-Electronic Portfolio Project

Dr. Phan

09/15/2023

Job Advertisement Analysis

Abstract

After reviewing innumerable job advertisements in my field listed on reputable career and company websites, I was attracted to the Junior Cyber Threat Analyst position at Phia, LLC. Phia is an 8a-certified business located in Northern Virginia. This company offers various cyber security services, including cyber intelligence, intrusion analysis, cyber defense, and incident response (Phia, 2023). It supports many agencies within the Federal Government, the Department of Defense, and private organizations (Phia, 2023). Although Phia has other job openings, I chose the Junior Cyber Threat Analyst position because it would allow me to put into practice the knowledge I have gained in cyber security and gain more experience in my career.

Introduction

As the world increasingly relies on digital technology, the demand for experts to protect organizations from malicious cyber threats has grown exponentially. Junior Cyber Threat Analysts are integral to this field, as they possess the skills and knowledge necessary to identify, assess, and mitigate potential security risks. This paper will discuss the job responsibilities of a Junior Cyber Threat Analyst, exploring the essential skills needed to succeed in this role as outlined in a select job advertisement.

Purpose and Responsibilities of Junior Cyber Threat Analyst

The purpose of the Junior Cyber Threat Analyst is to maintain the security of the organization`s network system. According to the job advertisement for this position, the nature of work carried out by the Junior Cyber Threat Analyst would encompass performing “threat analysis, maintaining indicators, and assisting with incident response procedures” (Phia, 2023). Some of the major responsibilities of the job include identifying and developing threat signatures, executing and supporting standard procedures for incident response, and liaising with the Incident Response Teams and Business Unit Information System Security Officers. In addition, the Junior Cyber Threat Analyst would gather intelligence and identify cyber security threats. The other primary responsibility of the Junior Cyber Threat Analyst would be helping the top management in documenting reports about threat intelligence (Phia, 2023).

Skills Required for Junior Cyber Threat Analyst

Upon analyzing the job advertisement, it dawned on me that some of the skills needed for the job include cybersecurity skills. The job ad specified that the ideal candidate should possess experience with various cybersecurity tools, intelligence gathering, information security, and network forensics (Phia, 2023). These skills are crucial for this position because one must work with the supervisor to gather intelligence, cyber threats, and counterintelligence information. Besides, the job holder would employ cyber security skills in collecting network traffic and filtering.

The other skills highlighted in the job ad that a person must possess are strong communication and good interpersonal skills. Communication skills are essential in this position because the job holder is expected to constantly interact with the Incident Response Teams and the Business Unit Information System Officers. Also, the Junior Cyber Threat Analyst requires good communication and interpersonal skills to interact with the senior management team in document analysis effectively.

Moreover, the job position requires a person to have good organizational skills. These skills are essential for this position since the Junior Cyber Threat Analyst has to gather intelligence and counterintelligence information and present it to the top management in an organized manner. Apart from organizational skills, one is required to have advanced skills in using Microsoft Office tools to aid in presenting the collected data to the management team. Therefore, the Junior Cyber Threat Analyst is expected to prepare PowerPoint presentations to document the gathered information and present it in a form that managers with no or little knowledge of cyber security concepts can understand.

Eventually, the job ad emphasizes that the position requires critical thinking and problem-solving skills. The job ad states that the role calls for a person who is a critical thinker and possesses superb problem-solving skills. Considering that some of the duties of the Junior Cyber Threat Analyst are maintaining threat indicators and implementing standard protocols for the incident response, having critical thinking and problem-solving skills is pivotal. The proactive problem-solving skills would also help one thrive in the position because the working environment is challenging, as noted in the job advertisement.

How Courses and Internships Have Prepared Me for the Skills

Having reviewed the skills needed for the Junior Cyber Threat Analyst at Phia, I appreciate that my courses and internships have adequately prepared me for these skills. For example, my courses and internships have allowed me to develop a set of cyber security skills I need to perform the cyber threat analyst responsibilities. In particular, my internship at the Port of Virginia notably exposed me to challenging work environments, helping me develop good interpersonal, communication, and problem-solving skills. Equally, my academic journey has enabled me to hone my critical thinking skills by acquiring the skills needed to become a critical thinker. Also, completing this course and other courses has allowed me to improve my writing skills. Considering that part of the work of the cyber threat analyst is writing reports based on gathered intelligence and counterintelligence information, my courses have taught me to effectively communicate my findings in writing using different Microsoft Tools like PowerPoint.

Additional Training

Considering the responsibilities of the position, the additional training that might be helpful for the job includes the CompTIA Security + and Certified Information Systems Auditor (CISA). The CompTIA Security + training would help me validate the core skills required to undertake the security duties associated with the job. Similarly, CISA training would allow me to enhance my skills in monitoring, auditing, and assessing the company`s network systems. Furthermore, I need training on federal information security regulations, procedures, and standards because the job ad specifies that the job holder should have this knowledge.

Conclusion

Analyzing the job advertisement allowed me to know my preparation for employment in my field. It enabled me to know some skills I need to secure the Junior Cyber Threat Analyst job and why they are essential for the position. Although I possess some of the core skills required to perform the duties of a Cyber Threat Analyst, I have realized that I need additional training to perform the duties that come with this position effectively.

References Phia. (2023). Junior cyber threat analyst. https://jobs.lever.co/phiatech/dd6f097b-72c0-4550-a93a-ca951b9aadd9

Personal Narrative

Stephen Antwi

Old Dominion University

Electronic Portfolio Project

Dr. Phan

11/17/2023

Abstract

This personal narrative encapsulates my academic journey in Cybersecurity, tracing my evolution from a curious high student to an adept Cybersecurity professional. Primarily, this journey is based on my educational, work, and internship experiences. The narrative unfolds against the background of intermediate information science, highlighting the critical role played by several academic courses I took at Old Dominion University in shaping my journey in Cybersecurity. It also explores how my internship at the Port of Virginia and work experiences with the United States Navy have helped refine my knowledge and Cybersecurity skills, such as vulnerability assessments, penetration testing, and incident response. In unfolding this narrative, emphasis is laid on how practical experience and academic knowledge in my quest to become a highly proficient Cybersecurity expert with profound knowledge of this profession have significantly contributed to enhancing my competency in performing Cybersecurity duties.

Personal Narrative Essay

Introduction

As I reflect on my journey into the field of Cybersecurity, I am reminded of what prompted me to develop a passion for this profession. My journey started with a passion for technology and a relentless interest in technology’s role in driving society towards a global village. This happened when I was in high school. I recall envisaging a scenario where the world’s interconnectedness could pose a significant security challenge to individuals and organizations when it emerged that giant telecommunication companies were experiencing unsuccessful and successful cyber-attacks. Little did I know that I was envisioning my future career path. My journey into becoming a Cybersecurity expert has been significantly shaped by my academic work, and internship experiences.

Academic Experience

My academic journey, especially at Old Dominion University, laid a foundation for my Cybersecurity career. This journey commenced in May 2021 when I enrolled for a Bachelor of Science in Cybersecurity. I embarked on this quest with some intermediate knowledge of information science, and my curiosity to learn more about Cybersecurity motivated me to pursue a degree in Cybersecurity. This academic groundwork served as a launch pad for an exciting adventure in Cybersecurity.

During my undergraduate, my instructors introduced me to specialized courses that equipped me with invaluable knowledge and skills about many Cybersecurity concepts. CYSE 300 (Introduction to Cybersecurity) is one of the courses that introduced me to Cybersecurity. This course allowed me to gain essential information about this field, such as computer system architectures, cyber threats and vulnerabilities, critical infrastructure, network security, risk assessment/management, information assurance, and cryptography. By the end of this course, I had mastered valuable knowledge and technical skills that laid the ground for me to advance my understanding by undertaking more Cybersecurity courses.

The other course I took at Old Dominion University that equipped me with helpful knowledge and skills in Cybersecurity was CYSE 301 (Cybersecurity Techniques and Operations). In a nutshell, this course focuses on techniques and tools employed to assess large computer networks and systems and how to harden their security. While taking this course, I learned C programming, a beneficial concept in performing most Cybersecurity operations like network protocol stack and malware analysis. Also, I learned the map networks in this course utilizing various diagnostic software tools. I also learned about configuring firewalls, advanced packet analysis, writing intrusion detection, penetration testing techniques, and how to perform forensic investigations. Therefore, CYSE 301 offered me practical knowledge of Cybersecurity operations.

The third course I pursued at Old Dominion University that prepared me for the Cybersecurity profession is ECE 416 (Cyber Defense Fundamentals). This course offered an opportunity to learn about Cybersecurity and defense. In particular, it provided me with essential knowledge about Cybersecurity theory, computer systems, network security, and information assurance and protection. Therefore, the course taught me about various security threats to information systems and how to counter them. Most importantly, this course exposed me to the latest applications of Cybersecurity systems. In addition, ECE 416 allowed me to learn about cryptographic applications, contemporary cryptographic systems, and cryptographic algorithms for public key and symmetrical encryption.

The fourth course I took at Old Dominion University that equipped me with priceless knowledge about Cybersecurity is ECE 419 (Cyber-Physical System Security). This course introduced me to networking and Cyber-Physical System Security (CPSS) integrated computing. The knowledge I gained from this course has helped me to monitor the physical environment, utilize the monitored data to monitor the condition of the physical environment, control access to the physical environment, and employ cyber communications to monitor, detect and control operations. Moreover, ECE 419 helped me learn how to secure Internet-of-things (IoT) applications and cloud storage systems. Therefore, my academic journey at Old Dominion University has played a pivotal role in my journey to acquire the necessary knowledge and skills to become a Cybersecurity professional.

Internship Experience

Although the theoretical knowledge I gained at Old Dominion University significantly defined my career path, it was not enough to allow me to navigate the ever-changing Cybersecurity world. Accordingly, I sought practical experience to supplement my academic knowledge at the Port of Virginia in Norfolk, Virginia, where I applied theoretical knowledge to actual cases. This internship acquainted me with essential knowledge of incident response. While working at the Port of Virginia, I assumed a forefront position in helping the organization secure its network system. The internship also offered me a panoramic view of Cybersecurity by giving me hands-on experience in penetration testing and vulnerability assessments. I was able to hone my skills in penetration testing. Most importantly, my supervisor at the Port of Virginia assigned me to work on a project about MITRE ATT&CK Framework, a “model for cyber adversary behavior” (Trellix, 2023). The project allowed me to learn more about the security threats facing the organization, assess the organization’s defenses, and harden the organization’s network security. Therefore, my internship at the Port of Virginia was a steppingstone, driving me further to learn about Cybersecurity.

Work Experience

My work experience in the United States Navy also shapes my Cybersecurity journey. I joined the Navy in January 2011 as an information system security analyst at the USS Decatur. The information security analyst role exposed me to many functions in Cybersecurity. While working at the USS Decatur, I assessed the information systems by following NIST RMF, NIST SP 800-53, and NIST SP 800-53A. Also, I collaborated with other information security professionals to create Privacy Threshold Analysis (PTA) and Privacy Impact Analysis (PIA). I worked at USS Decatur until March 2019, after which I joined the United States Navy, USS Normandy, in Norfolk, Virginia, as an information assurance analyst. My work at USS Normandy entails developing security policy documentation that complies with the National Institute of Standards and Technology (NIST) and the Federal Information Security Modernization Act (FISMA). Additionally, I often assist penetration testers (ethical hackers) to test information systems to identify vulnerabilities and develop security controls. Therefore, my work at the United States Navy has significantly contributed to my competencies as a Cybersecurity professional by offering me a hands-on opportunity to exercise and develop my skills.

Conclusion

In sum, my journey into Cybersecurity can be described as a tapestry woven with threads of academic, internship, and work experiences. It is a narrative of professional development and a solid determination to safeguard the digital world. Reflecting on my journey, I am grateful for the various opportunities that have shaped my career and adequately prepared me to become a digital guardian at the forefront of a fast-paced digital realm.

References

Trellix. (2023). What is the MITRE ATT&CK framework? https://www.trellix.com/en-us/security-awareness/cybersecurity/what-is-mitre-attack-framework.html