Cyber Security (Scope of Competition)

Recommended Entry Requirements
1. Competitors are recommended to possess the broad knowledge, skillsets or abilities defined in the seven (7) cyber security functions stated in the NIST NICE Cybersecurity Workforce Framework.

Competition Format
2. This competition is a 2-person team event.

3. The Test Projects for the competition are structured into 3 categories of tasks:

• Infrastructure Setup and Security Hardening
• Cybersecurity Incident Response, Digital Forensic Investigations and Application Security
• Capture-The-Flag (CTF) Challenge

4. Competitors are required to, minimally:

• Provision and configure secure Web and FTP services in Windows and Linux system
• Operate and maintain server equipment in designated competition scenario setup
• Identify, audit, modify or devise policies and plans to support cyber security processes
• Perform IT infrastructure strengthening and hardening; such as,

– Identify network/host vulnerabilities
– Identify, escalate/mitigate threat in a SOC environment
– Design router ACLs
– Perform system policy hardening
– Set up and/or write firewall rules
– Update IPS/IDS signatures
– Conduct application security tests
– Setup and test VPN
– Perform penetration test of target systems with toolsets available
– Social engineering
– Security Auditing

• Perform Threat and Exploitation Analysis of given logs and/or audit trails.
• Perform Cybersecurity Incident Response and Digital Forensic Investigations.

Time Allocated
5. 24 hours over 3 days of competition (8 hours per day)

Technical Description
Download the PDF file here: Cyber Security -TD 2020