Monthly Archives: November 2016

Mobile Forensics and Security Certificate

Leave a reply

Robert Morris University’s Department of Computer and Information Systems is offering a new certification program: Mobile Forensics and Security. The program, which is offered both in-class and online, gives students hands-on experience with a variety of computer and mobile forensic tools. The program also teaches students about the legal procedures for computer and mobile forensic analysis. It also examines various techniques for preventing unauthorized attacks on mobile devices and computer networks.

The Mobile Forensics and Security Certificate has the following class requirements:

  • Intro to Decision Support Systems (INFS 1020)
  • Mobile Security Policy (INFS 3110)
  • Intro to Computer Forensics (INFS 3120)
  • Cyberlaw (INFS 3170)
  • Digital Evidence Analysis (INFS 3190)
  • Mobile Forensics (INFS 3191)
  • IT Security, Control/Assurance (INFS 3222)
  • Computer and Network Security (INFS 3235)
  • Network Forensics, Intrusion Detection, and Response (INFS 4180)

Most of these classes are already requirements for students majoring in Cyber Forensics and Information Security. However, this certificate is available for anyone who is willing to take these courses.

The following brochure has more information about the certificate: mobilecert

If you have any other questions, please contact Dr. Paullet at paullet@rmu.edu.

Foreign Service IT Fellowship

Leave a reply

The U.S. Department of State is sponsoring an IT fellowship for students in IT-related majors. There are two different fellowship opportunities: one for undergraduates and one for graduates.

The undergraduate fellowship is available only for sophomores. Accepted applicants will be working for two summer. For one summer, they will work in Washington, D.C. with the Department of State. During the second summer, they will work a Foreign Affairs job at an embassy abroad. The fellowship will also cover $37,500 annually for tuition, room & board, books, fees, and other travel expenses.

The graduate fellowship is available for seniors who have already been accepted into a Master’s or Integrated program. The accepted applicants will do the same jobs in both summers as the undergraduate applicants.

At the end of both the undergraduate and graduate fellowships, the accepted applicants are guaranteed jobs with the U.S. Department of State. Both positions require a five-year commitment after completion of work for the Department of State. Students applying must be currently enrolled in an IT degree.

Students can apply at http://www.twc.edu/FAIT2017

Here is a link to a brochure for the fellowships: fait-fellowship-brochure-final

For more information, contact Dr. Paullet at paullet@rmu.edu

IT/Engineering Intern – Curtiss-Wright EMD

Leave a reply

Curtiss-Wright Electro-Mechanical Corporation is looking for an IT/Engineering Intern to work for them staring in January 2017. Curtiss-Wright EMD is a lead supplier of critical function, electro-mechanical products. The company is located in Cheswick, Pennsylvania.

The position will focus on hardware and system administration within a high-end engineering environment. The position will also involve the configuring of Red Hat Linux workstations and clusters, along with engineering SW installation and troubleshooting. The position will also involve hardware roll-outs and upgrades.

Qualifications:

  • G.P.A. of 3.2 or higher
  • U.S. Citizen
  • Must have transportation to company location
  • Can work full time, or at least 24-30 hours per week

The internship is paid, starting at $15.00/hour. Applicants can apply though ColonialTRAK or directly to Cathy Pascarella at cathypascarella@gmail.com. Applications must be submitted by Saturday, December 17th. 

CIS Dept Survey regarding Student Laptops and Devices

Leave a reply

The CIS Department is gathering students’ opinions regarding laptops and other technology devices used for class work.  We would like to ask and encourage you to participate by responding to this short survey.  The survey contains 22 questions and will take approximately 10 minutes to complete.

Thank you!

http://rmulaptop.questionpro.com

qr-laptop-survey

Beware, iPhone Users: Fake Retail Apps Are Surging Before Holidays

Leave a reply

In the past few weeks, there have been hundreds of fake retail and product applications in Apple’s App Store. The fake apps have pretended to be companies such as Dollar Tree, Foot Locker, Nordstrom, and Dillard’s. A company that tracks new shopping apps, Branding Brand, reported a large increase in these fake applications in the past few weeks.

The apps are being created to trick Black Friday shoppers into clicking them. Some apps seem to be harmless, just displaying pop-up ads whenever users click on them. Others, however, are dangerous because users can have their credit card information stolen if the app asks them to input it. Also, some of the apps can contain malware that can steal personal information and even lock the victim’s phone.

The fake apps came from developers in China; they were somehow able to get past Apple’s review process for new apps. Apple’s app screening process is less strict than Android’s; Apple focuses more on blocking malicious software and does not routinely examine the thousands of new apps that are sent to them everyday. It is important for brands and companies themselves to search for and report these fake apps, similar to how they search for and report fake websites. Last week, however, Apple did remove hundreds of fake apps after an article was published about the apps. A spokesperson for Apple claims that they have set up ways for customers to report fake apps. In September, Apple started to look through their two million apps to remove fake and unnecessary ones. Despite this, new fake apps continue to appear.

A recent example of a fake app was one called Overstock Inc. – apparently named to let customers believe that it was the real company app for Overstock.com. The developer of the app is the Chinese company Cloaker Apps. The CEO of Cloaker, Jack Lin, claims that the company only provides the back-end technology for the apps; they do not investigate their clients. However, not even Cloaker is what it seems; the company’s website states that its headquarters is in the middle of Facebook’s campus in Menlo Park, California. When Jack Lin was first interviewed, he claimed that the company only had offices in China and Japan. When asked about the office in California, he claimed to have “tens of employees” there.

China is, by far, the biggest source of fake applications. Many of the fake apps have red flags to show that they are not real, including: nonsensical menus in broken English, no reviews, and no history of previous versions of the app. So far, thousands of individuals have apparently fallen prey to the newest fake apps. However, in most cases, no serious problems have occurred. The fake apps usually target companies either with no apps or multiple apps. Some have even used Apple’s paid search ads to put their fake apps at the top of the search results.

Fake apps on Apple are a new problem, occurring more commonly in the past few months. However, with Black Friday soon approaching, it is important to remember to check the applications that you are planning to download. Also, if possible, try to use alternative methods to applications that ask for banking or personal information. For example, try to use the company’s website on your laptop or computer; also, remember to check the security on the website itself. Criminals are obviously going to take advantage of whatever situation becomes available to them. Therefore, you should always be careful of what you click or download on your phone or computer.

Article Link: Beware, iPhone Users

U.S. Steel Interview for Interns

Leave a reply

U.S. Steel will be hiring twenty IT/Computer Security/Cyber Security interns for the 2017 Summer session. The positions will be located at the company’s Service Center in the South Side (Pittsburgh). The company will be conducting interviews at their headquarters location from Friday, November 18th, to Friday, December 2nd.

The internship will start in June 2017, will last between twelve and fourteen weeks, and will be paid. Interns will work in one of the following areas:  Enterprise Applications and Global Business Processes, Global Plant Systems, Enterprise Resource Planning, or Cyber Security.

The following qualifications are necessary for the internship:

  • Candidates must be a full-time student pursuing a Bachelor’s Degree or Master’s Degree in Information Technology, Computer Science, Mathematics, Engineering or any IT related field
  • Candidates must have completed their sophomore year by June 2017
  • Be authorized to work in the US without sponsorship

Students should apply to either U.S. Steel’s website or at the following link. There is more information about the internship at the second link.

12-Hour Gaming Event

Leave a reply

The Top Secret Colonials will be hosting a 12-hour gaming marathon event on campus on Saturday, November 12th. The event will take place from 11am to 11pm in the Ferris Ballroom in Yorktown.

The event is Bring Your Own Equipment: screens, servers, consoles, etc. TSC will provide necessary power and Ethernet connections.

The cost to attend the event is $5. All proceeds will be donated to Children’s Miracle Network hospitals. SET Credit will also be given for attendance. Food and drink will be provided.

Email John Weingartner at jtwst256@mail.rmu.edu if you have any questions about the event.

Top 5 Skills Employers Look For

1 Reply

If you are anything like me, the job hunt following graduation is one of the top stressors currently on your mind. Finding a position that pays well and is what you truly love to do takes a backseat to just getting your foot in somewhere. I often worry that I do not possess the technical knowledge to land even an entry-level position. According to Zachary Scott, NRI Secure Technologies’ VP of business security, “soft skills” are oftentimes just as important to employers as “hard skills.” The following are the top 5 skills that companies look for in entry level computer security employees:

1. Troubleshooting
Troubleshooting skills are vital in all potential candidates. Any detected problem or anomaly can be viewed as something that troubleshooting skills can be applied to. Security pros with exceptional troubleshooting skills can figure out where things are broken, what’s still working, and how to fix the problem. This is vital in the field.

2. Innate Curiosity
Innate curiosity refers to a person’s willingness to dive deeper into a subject. Companies look for potential candidates who want to get deep into an issue and discover not just how to fix it, but what is causing it and to learn the best method to deal with said issue. “This is a trait that can not be learned, but is a monster that needs constantly fed.”

3. Knowledge of the Latest Attack Trends
Computer security is constantly changing and evolving. It is important that candidates have a rudimentary knowledge of how attacks are being perpetrated and who/what the common targets are.

4. Knowledge of the Latest Vulnerabilities
Knowledge of modern vulnerabilities helps employees determine the path that was taken by the hacker pre-breach, and where in the system hackers could be heading. In short, it increases awareness and helps to get a foot up on hackers to help prepare the system against them.

5. Data Analysis and Visualization Creation
In short, candidates who are able to create and implement systems that monitor and parse the vast arrays of data that enter a system. This is part development and part visionary in the sense that it helps to be able to plan the system and also how to create it.

I can’t stress enough that this is not a be-all/end-all definitive list, but these are areas that graduates and really anyone in the hunt for a job in the IT security field should look into and become familiar with. As I mentioned earlier, as a soon-to-be graduate still looking for a job in the field, tips like these are always helpful. Hopefully they will be of aid to you!

Best of luck!

Internship Opening with Dominion Energy (Richmond, Virginia)

Leave a reply

There is currently an internship opening in the Richmond, Virginia office of Dominion Energy Company in their Computer Forensics department. This opening is for Criminology and Computer Science students. The intern will be responsible for working with Dominion’s Security Computer Forensic specialist in various facets of the security field. Assisting with research and analyzing automated systems are two key components of the position, along with processing electronic storage devices for evidentiary reasons.

The qualified candidate will fulfill the following requirements:
-General knowledge and understanding of security concepts, and sophisticated security technologies, to support computer forensics.

-Experience with the following operating systems; DOS, Macintosh, Linux, Android, and MS Windows is preferred.

-Experience with office products such as Word, Outlook, Powerpoint, Access, Excel, email is highly preferred.

-Consistent demonstration of strong, critical thinking and decision making skills, applied in a security environment.

-Ability to assess security incidents and take appropriate action.

-Demonstrated ability to manage the flow of sensitive information.

-Ability to coordinate and manage multiple work processes.

-Experience with Encase Forensic Software, Encase, FTK, Autopsy, Magnet is a plus.

NOTE: A valid driver’s license is also required for potential candidates.

Interested candidates can find application information at: https://www.myinterfase.com/rmu/Job/Detail/Ly9DOEN5eUhZdG9WVGJ3bzNERDJtdjlaUjZGc2lHYWY3NVB4Y21OQWdQST01

Dollar Bank Currently Hiring Programmers

Leave a reply

Do you graduate in December? Are you still looking for a job? Do you have an interest in programming, specifically Cobol? If you answered yes to these questions, Dollar Bank may be the right fit for you. Dollar Bank is currently hiring entry-level programmer analysts. This is a full-time position focused on “producing programs which contribute to the solution of business problems or needs of the Bank.”

Objectives of the position include:
•Codes Cobol programs and tests for accuracy.
•Prepares documentation for Systems and Programming
•Implements program changes.
•Tests programs for accuracy.
•Designs systems and performs associated tasks involved with the system’s design, including running tests and implementing new development and existing projects.
•Solves problems that tend to arise in the normal course of business, including off-hours calls.
•Communicates accurate task status to supervisor and peers.

Qualifications include:
•Graduate from an IT Technical school or college degree with concentration in Information Technology required. Will consider commensurate.
•Must have course work or knowledge of programming.
•Must possess excellent analytical skills as the candidate will be required to determine what changes are necessary to accomplish project requirements.
•Must have excellent verbal and written communication skills.
•Candidate must be able to work under pressure and have proven ability to meet deadlines.
•Cobol classes or knowledge of Cobol is a plus.

Interested applicants can apply online at https://www.dollar.bank/Company/Careers and by searching for the position by its title (Programmer Analyst) or job reference number (1412BR).