From August 12 to 15, 2024, I had the privilege of participating in a four-day cyber range experience at the University of Ottawa’s new Cyber Range, a state-of-the-art facility built in partnership with IBM. This immersive program provided a comprehensive overview of cybersecurity, combining technical training with practical exercises and real-world scenarios.
"The Cyber Range has been developed to provide diverse organizations with greater access to state-of-the-art technology in order to build cybersecurity resilience across Canada."
Day 1: Introduction and Foundational Learning
The first day began with a welcome session and program orientation, setting the tone for the intensive days ahead. Randy Purse delivered an insightful talk on “Contextualizing Cybersecurity,” covering topics such as cyber threats, risk management, and the NIST Cybersecurity Framework. This was followed by an introduction to the Catalyst Cyber Range platform and technical curriculum led by Ian McWilliam. The afternoon sessions focused on “Cybersecurity Essentials,” including modules on scanning, Metasploit basics, Wireshark, and vulnerability assessment.
Day 2: Advanced Cybersecurity Essentials
Day two continued with advanced modules in “Cybersecurity Essentials B,” delving into topics like digital forensics investigation and privilege escalation. The highlight was the “Incident Response + Ransomware” session, where we replicated an enterprise environment and practiced responding to a ransomware attack. Ian McWilliam led a debrief session, providing valuable insights into our performance and areas for improvement.
Day 3: Competitive Exercises and Career Insights
The third day started with a competitive “Capture the Flag” exercise, where teams competed in a Jeopardy-style competition. This was followed by a panel discussion on “Building a Career in Cybersecurity,” moderated by Randy Purse and featuring industry experts Aron Feuer and Howard Yu. The afternoon included an immersive crisis management event and technical training sessions.
Day 4: Real-World Simulation and Debrief
The final day was dedicated to a comprehensive review and training session on basecamp, help desk, risk management, and knowledge base. The highlight was the TC Pipeline Immersive Event, a high-pressure simulation that tested our ability to manage multiple tasks simultaneously. The event was both memorable and challenging, pushing us to our limits. The day concluded with a lessons-learned debrief and a roundtable event with stakeholders.
"Globally, cyberattacks are on the rise. The new uOttawa-IBM Cyber Range will help the university enrich its curriculum and train cybersecurity experts with the skills and knowledge to debunk serious security breaches"
Key Learnings and Reflections
The experience underscored the importance of understanding cybersecurity from a business perspective, not just a technical one. Practice was key, and the simulations taught us how to react effectively in emergency situations. The TC Pipeline Immersive Event was particularly memorable, highlighting the need for clear communication, efficient use of available tools, and regular team meetings to ensure everyone is on the same page.
Overall Reflection
This experience reinforced the importance of understanding business goals and objectives in cybersecurity. It’s not always about finding who did it; it’s about preventing it from happening. In a real situation, I would focus on one thing at a time, use the tools available, and ensure the team is well-informed through regular meetings. Most importantly, I would ensure that businesses have robust emergency plans in place.
The four-day cyber range experience was invaluable, providing a blend of theoretical knowledge and practical application that will be crucial in my future career in cybersecurity.