FIRST-AJCCBC Workshop Series – Summer 2024

The FIRST Workshop series was designed around operational incident response and cybersecurity content to support the development and growth of incident response teams and cybersecurity practitioners across ASEAN member economies. The two workshop topics explored: SIM3 (Security Incident Management Maturity Model), and Jupyter Notebooks in Incident Response in the form of two half-day workshop sessions. Both trainings were were pragmatic, highlighting how to apply SIM3 to help mature the capacity and capability of incident response for CSIRT/CERT and SOC staff, and how to utilize the Jupyter set of tools and open standards to conduct documented, systematic, and repeated data analysis for incident response and detection.

The two full day Capture-The-Flag (CTF) challenges represented a series of technical problems designed to provide a fun opportunity to utilize creative technical problem-solving abilities to solve incident response inspired challenges. The challenges were developed by the FIRST Security Lounge SIG (Special Interest Group) made up of global incident response experts and teams.

Participants expressed broadly positive feedback on all sessions, highlighting the quality and the expertise of the trainers, the way topics were addressed, and about the lab environment. Participants also consistently cited the value of the number and ‘variety’/’diversity’ of the CTF challenges, including appreciation for the practical applicability of the content. The value of the CTF to spur further learning during and beyond the session was also highlighted.

FIRST looks forward to exploring further feedback and opportunities for future collaboration in any regions of the world.

Kudos to the trainers: Olivier Caleff (SIM3), Serge Droz-Georget and Éireann Leverett (Jupyter Notebook in Incident Response), Jessica Schumacher (Capture-the-Flag).

Published on FIRST POST: Jul-Sep 2024