• Call: (301) 220 2802
  • Email: info@trainace.com

TrainACE - IT and Cybersecurity Training Blog

Skepticism Greets Increase in Cyber Command at the Pentagon

[fa icon="calendar'] Feb 6, 2013 2:45:41 AM / by Ryan Corey posted in Cisco, Cybersecurity

[fa icon="comment"] 0 Comments

On January 27, the Washington Post reported that the Department of Defense plans to expand its “Cyber Command,” a force dedicated to defending U.S. computer systems, by a factor of five, from 900 to 4,900 members. Although a formal announcement had not been made, Pentagon sources indicated that an increase in numbers was not the only change on the agenda. The Cyber Command would also undergo a shift in focus, with the new structure adding acknowledged offensive capabilities to a command that had previously been characterized as exclusively defensive.

Read More [fa icon="long-arrow-right"]

How Honey Pots and Honey Farming is Used in Cyber Security

[fa icon="calendar'] Jan 29, 2013 3:45:21 AM / by Ryan Corey posted in advanced persistent threat, Cisco, Cybersecurity, Exploits, Information Assurance

[fa icon="comment"] 0 Comments

 

The term “honeypot” or, as it sometimes appears, “honey pot,” came to computer security from the world of espionage, where it referred to an agent who would be sexually available to a target. If all went as planned, the target would be compromised, either by sexual blackmail or because the relationship led the target to share secret information.

Read More [fa icon="long-arrow-right"]

The Cyber Security Battlefield Grows More Dangerous

[fa icon="calendar'] Jan 14, 2013 10:42:28 AM / by Ryan Corey posted in advanced persistent threat, Cisco, cyber war, Cybersecurity, Information Assurance, Pentesting, Ethical Hacking

[fa icon="comment"] 0 Comments

A huge portion of modern society uses some form of digital technology on a daily basis. Many conveniences on a national and personal level have been made possible due to this technology, but also opens up a Pandora's box of a whole new set of problems as well. The cyber battlefield grows more dangerous as organized hackers and other cyber threatening criminals set out to exploit the conveniences produced by the digital age for their own gain. There is an ongoing challenge, therefore, creating cyber security or defenses to protect the country from attacks; but have, on many occasions, been successfully breached to raise considerable concern even among the most savvy cyber security agencies in the world.

Read More [fa icon="long-arrow-right"]

What is Advanced Persistent Threat

[fa icon="calendar'] Dec 11, 2012 11:25:45 AM / by Ryan Corey posted in advanced persistent threat, CEH, Cisco, cyber war, Cybersecurity, Information Assurance, Pentesting, Ethical Hacking

[fa icon="comment"] 0 Comments

The term advanced persistent threat (APT) was originally used to describe complex, ongoing espionage perpetrated by foreign governments. However, today, APT typically refers to a category of cybercrime directed toward businesses or government entities. APTs are usually online attacks used to achieve goals beyond those that can be met by a single security breach, but some may involve malicious activity conducted onsite. Compromised computer systems are continuously monitored by the attackers or added to a stable of slave computers to be used to achieve some future goal. APTs are most often perpetrated by employing some form of malware, and IT technicians defend against APTs by installing antimalware software and hardware firewalls.

Read More [fa icon="long-arrow-right"]

What is Malware Analysis?

[fa icon="calendar'] Dec 4, 2012 9:23:03 AM / by Paul Ricketts posted in Cisco, Cybersecurity, Information Assurance, Malware

[fa icon="comment"] 0 Comments

What Is Malware Analysis? A Complete Guide for IT Security Professionals

Malware analysis is the process of examining malicious software to understand how it behaves, how it spreads, and how to stop it. It remains one of the most valuable skills an IT security professional can develop. Nearly every major security breach traces back to some form of malicious code, whether that's a virus, worm, Trojan, or increasingly sophisticated fileless attack. Security researchers now track over 450,000 new malware and potentially unwanted application samples every single day, making the ability to quickly identify and neutralize threats more critical than ever.

Read More [fa icon="long-arrow-right"]

CompTIA SecurityX Formerly CASP+: Who It Is For

[fa icon="calendar'] Sep 25, 2012 7:45:31 AM / by Paul Ricketts posted in CASP+, Cisco, CompTIA, Cybersecurity, Information Assurance, Ethical Hacking

[fa icon="comment"] 0 Comments

CASP+ has a new name. CompTIA’s advanced cybersecurity certification is now SecurityX, with the current exam version CAS-005 launched on December 17, 2024.

That name change is the first thing the old article needs to fix. People still search for CASP+, and many resumes still use the older name, but the certification to talk about in 2026 is CompTIA SecurityX.

The purpose has not changed much. SecurityX is still built for experienced cybersecurity professionals who want to prove they can design, implement, and defend enterprise security systems. It is more technical than a management credential, and it is not meant for beginners.

Read More [fa icon="long-arrow-right"]

The Average Computer Forensics Salary

[fa icon="calendar'] Aug 14, 2012 2:04:24 PM / by Paul Ricketts posted in Salary, CHFI, Cisco, Cybersecurity, EC-Council

[fa icon="comment"] 0 Comments

Computer forensics is no longer just about pulling files from a seized laptop. In 2026, digital forensics sits inside incident response, cloud investigations, mobile device analysis, malware review, insider-threat cases, fraud investigations, and legal discovery.

That is why salary data can look messy. A “computer forensics” job in a police lab may pay very differently from a digital forensics and incident response role at a defense contractor, bank, consulting firm, or managed security provider.

Read More [fa icon="long-arrow-right"]

The Average Salary for the CISSP Certification in DC, Maryland, and Virginia

[fa icon="calendar'] Jul 6, 2012 8:11:03 AM / by Paul Ricketts posted in Cisco, CISSP, Cybersecurity

[fa icon="comment"] 0 Comments

 

If you are looking at the CISSP, the real salary question is not “What does the certification pay?” It is “What does the certification help me qualify for?”

That distinction matters. The Bureau of Labor Statistics does not track CISSP-specific salaries. ZipRecruiter, Glassdoor, and Payscale can be useful snapshots, but they mix job postings, self-reported pay, title inflation, remote roles, and employer salary bands. For a cleaner 2026 answer, it is better to triangulate: use BLS/O*NET for the occupation baseline, ISC2 for CISSP-holder salary context, and CyberSeek for demand.

Read More [fa icon="long-arrow-right"]

Why Cloud Security Training Should be a Priority for Tech Firms in the Next Year

[fa icon="calendar'] Jun 7, 2012 5:08:36 PM / by Paul Ricketts posted in Cloud Computing, Cybersecurity

[fa icon="comment"] 0 Comments

Cloud security training deserves a place at the top of every tech firm's agenda for one simple reason: the cloud attack surface is growing faster than the security workforce. Recent analysis puts the global cybersecurity talent shortfall at roughly 4.8 million professionals, while cloud security guidance from major vendors keeps emphasizing the same point: organizations are responsible for securing the identities, data, workloads, APIs, and configurations inside their own environments.

Read More [fa icon="long-arrow-right"]

Common Information Technology Careers and How to Choose Your First Path

[fa icon="calendar'] Jan 19, 2012 2:21:54 PM / by Paul Ricketts posted in Cybersecurity, Systems Administration, Network Administration

[fa icon="comment"] 0 Comments

Start With the Work, Not the Job Title

The best way to choose an information technology career is to compare the work each role performs every week. Job titles vary by employer, but the day-to-day patterns are easier to recognize: support users, keep networks online, administer systems, protect data, automate repeatable tasks, and document each completed update.

Read More [fa icon="long-arrow-right"]