Cybersecurity - Cornerstone Community College

There are no pre-requisites for enrolling in the cybersecurity program. However, having fundamental understanding in the following will be of added value added:

High School Diploma or equivalent.
Good grades in math, science, and technology are recommended.
Basic IT knowledge is recommended.
A foundational understanding of computers, networking, and basic IT concepts is usually required, especially for this diploma programs.
Working knowledge of operating systems like Windows and Linux is recommended. Familiarity with command-line interfaces can be especially be useful.

With a Cybersecurity Diploma from Cornerstone International Community College of Canada (CICCC), graduates can explore various entry-level to mid-level job roles in cybersecurity and IT security. Here’s a list of potential job opportunities:

1. IT Security Analyst:

a. Role: Monitor and protect an organization’s IT infrastructure, identify security breaches, and recommend improvements.

b. Skills: Network security, intrusion detection, incident response, and understanding of security protocols.

2. Cybersecurity Specialist

a. Role: Analyze and enhance security measures, conduct risk assessments, and implement strategies to protect data and systems.

b. Skills: Risk management, vulnerability assessment, penetration testing, and knowledge of security tools.

3. Network Security Administrator

a. Role: Ensure the security of an organization’s networks by managing firewalls, monitoring traffic, and implementing security policies.

b. Skills: Network security, firewall management, VPN setup, and network intrusion detection.

4. Security Operations Center (SOC) Analyst

a. Role: Work in a SOC to monitor real-time data, detect threats, and respond to security incidents.

b. Skills: SIEM tools (like Splunk), log analysis, incident response, and threat intelligence.

5. Information Security Officer

a. Role: Develop and implement security policies, educate employees on best practices, and ensure regulatory compliance.

b. Skills: Policy development, risk management, regulatory compliance (e.g., GDPR, PCI-DSS), and communication.

6. Penetration Tester (Junior)

a. Role: Conduct simulated cyberattacks to identify vulnerabilities in an organization’s systems.

b. Skills: Ethical hacking, vulnerability assessment, familiarity with tools like Metasploit, and knowledge of scripting languages.

7. Cybersecurity Consultant (Entry-Level)

a. Role: Advise organizations on best cybersecurity practices, assess vulnerabilities, and recommend security improvements.

b. Skills: Risk assessment, security auditing, consulting skills, and knowledge of industry standards.

8. IT Auditor (Junior)

a. Role: Conduct audits to ensure IT systems comply with security standards and regulations.

b. Skills: Compliance knowledge (e.g., ISO 27001, NIST), auditing skills, and familiarity with cybersecurity frameworks.

9. Systems Administrator (Security Focused)

a. Role: Manage and maintain IT systems with a focus on securing servers, databases, and network resources.

b. Skills: Systems administration, cybersecurity principles, OS hardening, and backup management.

10. Application Security Analyst (Junior)

a. Role: Review applications for security flaws, conduct code reviews, and recommend secure coding practices.

b. Skills: Basic programming knowledge, application security tools, understanding of OWASP Top 10, and secure coding practices.

11. Incident Response Analyst

a. Role: Investigate and respond to security incidents, mitigate damage, and prevent future breaches.

b. Skills: Incident response, forensic analysis, understanding of malware behavior, and root cause analysis.

12. Risk Analyst

a. Role: Identify and analyze security risks within an organization, suggest risk mitigation strategies, and perform risk assessments.

b. Skills: Risk management, threat modeling, knowledge of security frameworks, and analytical skills.

13. Cloud Security Associate

a. Role: Assist in securing cloud infrastructure, monitor cloud environments, and implement cloud-specific security policies.

b. Skills: Cloud platforms (AWS, Azure), cloud security practices, access control, and understanding of cloud service models.

Cybersecurity professionals are needed in almost every industry, but some sectors have a particularly high demand due to the sensitive information they handle or the critical infrastructure they manage. Here’s a look at some key industries where cybersecurity skills are in especially high demand:

Financial Services
Healthcare and Pharmaceuticals
Government and Defense
Retail and E-commerce
Energy and Utilities
Technology and Software Development
Telecommunications
Transportation and Logistics
Legal and Professional Services

In a cybersecurity diploma program at Cornerstone International Community College of Canada (CICCC), students are typically introduced to a variety of software tools and platforms that cover essential areas in cybersecurity. These tools are designed to provide hands-on experience in network security, ethical hacking, incident response, and digital forensics. Here’s a list of common tools and software that students may encounter in such programs:

1. Network Security Tools:

- Wireshark: A popular network protocol analyzer used to capture and inspect network traffic. It’s essential for network security and troubleshooting.
- Nmap: A network scanning tool used to discover devices, open ports, and services on a network, crucial for vulnerability assessment.
- Cisco Packet Tracer: Often used in networking courses, this tool helps simulate complex networks and test network security configurations.

2. Ethical Hacking and Penetration Testing Tools

- Kali Linux: A Linux distribution specifically designed for penetration testing, with a suite of built-in tools like Metasploit, Hydra, and Burp Suite.
- Metasploit: A penetration testing framework used to develop and execute exploit code against vulnerable systems.
- Burp Suite: A web vulnerability scanner commonly used for testing the security of web applications by identifying vulnerabilities like SQL injection and XSS.

3. Forensics and Incident Response Tools

- Autopsy: A digital forensics tool for analyzing hard drives and other media, often used for learning digital evidence collection and analysis.
- FTK Imager: A forensic imaging tool that helps capture and analyze disk images and is valuable for incident response exercises.
- Volatility: A memory forensics tool that helps examine volatile memory (RAM) and is useful for investigating malware infections and suspicious activities.

4.Security Information and Event Management

- Splunk / Microsoft Sentinel: SIEM tools used for log management, event monitoring, and identifying potential security incidents through log analysis and pattern detection.

5. Firewall and Intrusion Detection Systems (IDS)

- Snort: An open-source IDS tool for real-time traffic analysis and packet logging to detect potential threats.
- pfSense: An open-source firewall/router software used to learn network security configuration and traffic management.
- Suricata: An advanced network IDS, IPS, and network security monitoring engine for threat detection and prevention.

6. Code and Web Application Security Tools:

- CEH: This unique diploma course was created in partnership with EC-Council by using CEH v.13, the most recent version.
- OWASP: Based on the OWASP top 10 the latest framework and security check lists

The average salary for a Cybersecurity Analyst in Canada is approximately CAD $70,000 to $90,000 per year, depending on experience, location, and specific skill set. However, the salary range can vary significantly based on factors like industry, company size, and additional certifications.

Here’s a breakdown based on experience:

Entry-Level (0-2 years):
CAD $50,000 – $65,000 per year
Mid-Level (3-5 years):
CAD $70,000 – $90,000 per year
Senior-Level (5+ years):
CAD $90,000 – $120,000+ per year

This course prepares students for careers in various industries by providing a blend of practical skills, foundational knowledge, and industry-relevant training. Here’s how the program prepares students to enter diverse industries:

1. Hands-on training with industry tools:

a. Students learn to use key tools and software (e.g., Wireshark, Metasploit, Splunk) widely used across industries like finance, healthcare, government, and technology. Familiarity with these tools gives graduates practical skills they can immediately apply in real-world scenarios.

b. Industry Impact: Cybersecurity roles in financial services, healthcare, and government often require experience with monitoring and vulnerability assessment tools to secure sensitive data.

2. Structure of a Co-op Program in Cybersecurity:

a. Integrated Work Terms: Co-op programs alternate between academic study and work placements, giving students a chance to work in roles related to cybersecurity, such as IT security analyst, network security intern, or SOC (Security Operations Center) analyst.

b. Duration: The co-op terms can last 6 months, depending on the program structure. Students may complete multiple work terms throughout the course.

c. Academic and Career Support: Schools often provide guidance in resume writing, interview preparation, and job searching, helping students secure positions with relevant organizations.

3. Professional Networking Opportunities

a. By working in real organizations, students build connections with industry professionals—peers, mentors, and supervisors—who can provide guidance, job references, and potential job offers post-graduation.

b. Networking during a co-op can be crucial for landing a full-time position after graduation, as students often find employment with the same companies where they completed their co-op placements.

4. Resume Building and Career Readiness

a. Completing a co-op program allows students to graduate with relevant work experience, setting them apart from graduates without practical exposure.

b. This experience is particularly valuable in cybersecurity, as employers highly value candidates who can demonstrate experience in handling real-world security challenges.