We are very glad to announce that our Trainings are now available at Springest and many company internal training portals, that are powered by it. For example, Uniper, Eneco, Abbott, Fibrant and many more!
So if your company uses Springest, please take advantage of the opportunity of booking your training there!
Springest is a great website where you find all kind of training programs and courses, for individuals and organizations. It is a pleasure to be now listed at this amazing platform and its broad partner ecosystem.
In November, we will be holding an IoT Security Bootcamp and an IoT Security Manager Training in Cologne. As usual, they will cover all aspects of IoT Security, from the technologies and testing methodologies to the vulnerabilities.
You will receive you own IoT Security Hacking Kit to keep training at home or at the office.
Keep your skills up to date and sharp, and grow your network at our Trainings. If you need help selecting a training or just want to reach to us, please do not hesitate to contact us and we will provide any additional information you need.
We are looking forward to seeing you in Cologne!
We are very glad to announce that we are now partners with ISH – Information Security Hub at the Munich Airport. This is a world-class cyber security competence center, with a focus on highly critical infrastructure, a long-standing experience and a broad partner ecosystem. Keep your skills up to date and sharp, and grow your network at this fascinating, modern and versatile training facility.
This year SevenShift will be holding two IoT Security Bootcamps at this great facility in Munich: The first one will take place on September 10th – 12th , and the second one will be on November 5th-7th, 2019. We will be teaching our 3-day hands-on IoT hacking class, but in a different location. As usual, the training will cover all aspects of IoT Security, from the technologies and testing methodologies to the vulnerabilities. The main focus will be offensive security: attacking and testing devices and platforms.
If you need help selecting a training or just want to reach to us, please do not hesitate to contact us and we will provide any additional information you need.
We are looking forward to seeing you there!
Update: The date dates have been updated.
We were invited by the Cloud Ecosystem EV to participate in a series of IoT Innovation Workshops taking place in different cities across Germany: Berlin, Frankfurt and Munich in September 2018.
The format was very interesting and productive: it started with approx. 2:30 of presentations related to IoT. Ranging from different use cases, analytics to IoT security. After a short break, the work was transformed with the “world cafe” format. Basically it was broken down into 4 small work groups, each with a topic: industrial analytics, 5G, industrial data spaces (IDS) and blockchain technology.
A specialist on each topic served as moderator to set the scene of the discussions and try to keep them on track. In this case all of them were very well versed in there topics. These sessions where really productive to get a kickstart on some of the topics and understand the pain points of different industries on each of them.
I had the pleasure to attend and present on two of the events: Frankfurt and Munich. I had about 30 min to talk about IoT security. I started with an overall introduction into IoT and IoT security, highlighting the vulnerabilities and frameworks to protect them. Finally I took them through a use case with Baby Cams, to highlight the typical findings and their implications.
Here is a teaser of the talk and before the end of the year, we will share the complete video from the presentation in Munich with the subscribers of our newsletter. So if you are still not part of it, now is a good chance to do so.
With these events, we got to meet very interesting people and company. Since then we have decide to become members of the Cloud Ecosystem and we will be working on security with the organisation and its members.
Here are some impressions of both events.
Read time 3-4 min
Deciding to book a Bootcamp can be a difficult decision. It is a big investment in time, energy, and money. To help you with your decision, we decided to give you more than seven reasons why to do it.
IoT security is complex by nature. There are multiple layers, aspects and technologies interacting at any given time to make it work. From the devices, their firmware, mobile and web interfaces, APIs, cloud and network services, to the network and radio protocols used. There is a lot to learn.
Research and learning about any topic requires lots of time. It is not easy to find time and the mindset to do this on a regular basis.
IoT is the hottest technology (or group of technologies) on the market right now. Everything is getting connected and is controlled by an app, from your smart watch, to your barbecue and your home. Development and innovation are happening at rocket speed, but the security is still trying to catch up. The results of an attack are no longer just finding yourself on the front page of the newspapers, but they are serious and can be life threatening. It is not possible to neglect the security of IoT products.
There is a very high demand for security professionals, and for the foreseeable future there will not be enough qualified professionals to fulfill this demand. Currently, there are just too many threats and too few professionals. There are multiples studies by ISACA and many other institutions that highlight this.
There is a shortage of skilled cybersecurity professionals. For example, the Computer Business Review cites a study by ISC2 that says that Europe alone will need 350.000 cybersecurity professionals by 2022.
Constant growth and learning: for those, who enjoy constantly learning new technologies and concepts, it is the right path. The constant change and evolution assure that the job will never get boring.
As we mentioned in our article: “Kickstarting a career in IoT Security”, to get hired as a security professional or to progress in this career path, you need a mix of: experience, education, and certifications. It takes all three to not only land the job, but also be successful in it. The SevenShift IoT Security Bootcamps, provide you all three, including a certificate of completion.
If you are a curious person, you like to understand how things or different technologies work; then a good training is the best environment for you. Each module should start by laying down the theory and the basics of how these things work. Once you have understood them, hacking them is a lot easier. Hacking is about knowledge and not poking things in the dark to see if they break.
What can you expect from a bootcamp?
A bootcamp will give you lots of knowledge condensed in a relatively short period of time. It will give you a kickstart so that you land on your feet and running. You will take away the know-how, techniques, tactics, and tools, as well as the hands-on experience on the topic.
The information you get in a bootcamp will significantly shorten your research time. Lots of the content is condensed, but it will help you identify your areas of improvement: on what topics you need to or want to go deeper into. You will get pointers to good sources of information.
What shouldn’t you expect from a bootcamp?
Three days is enough time to get your feet wet, but you will come out being the next Jacques Cousteau. You will not become a hardware/IoT hacker overnight. Use the knowledge gained to start pentesting IoT devices and sharpen your skills.
SevenShifts IoT Security Trainings
SevenShift has developed a series of IoT security trainings and workshops to fit any profile, from managers to pentesters.
- IoT Security for Managers: everything what a Manager should know to make an IoT project secure.
- IoT Security Bootcamp: 3 days Hands-on. Learning-by-Hacking. A hacker course for non-hackers. Teaches you how to discover security vulnerabilities in real life devices.
With your registration to the bootcamps, you will receive a free IoT Hacking Kit, which contains the tools and some vulnerable devices, so that you can continue sharpening your skills or hack devices after the event.
Our trainings take place at least twice a year, please check the training page to find the exact dates and locations.
Meet the trainer
Managing director / Lead Security Consultant / Trainer
Pablo Enjoys hacking, IoT, teaching, working with new technologies, startups, collaborating with Open Source projects, learning new things and being challenged.
In the last couple of years, he has been working mainly IoT security, testing dozens of devices and working with multiple platform providers to secure their solutions.
Rufly one year ago, we started our adventure creating SevenShift. The experience has been very challenging, but fun and fulfilling.
At the beginning, we thought that it would just be a change in our legal figure, from freelancers into to a company. But we feel that we have grown into a Boutique Security Consulting Firm, with many customers and multiple projects.
This has only been possible, with the support of our team, colleagues, clients and partners. Thank you so much for your engagement, expertise, patience and desire to reach our mutual goal!
A special thanks goes to our customers, for trusting us and letting us do what we love most: making IoT a more secure place. Giving us the time to experiment and think, to help us support your projects and make them better.
IoT is a fascinating but very complex world. In a few years, it will not be imaginable to live without this technology. Security, has not been the main focus for many of the players involved. However, our commitment is to help you make sure that your devices or products are secure. It is very important to us that you and your company can deliver what is expected from you.
There have been multiple milestones in this last year: from creating our logo, building our 2G base station, testing dozens of devices, and last but not least, preparing our IoT security trainings. These have been the biggest challenge of this year, and the first public trainings will take place at Startplatz, Cologne in November 2018.
We love training IT professionals, it is our passion. There is so much to learn and limited time to do it. We want to share what we have learned over the last couple of years, in our projects, studies and research with our students.
The best investment professionals and companies can make is to keep their skills (and those of their employees) up to date and sharp. This allows them to provide a positive impact on their organizations, helping create better and more secure products and solutions.
We would like to thank everyone involved in our journey. We hope you’ll join us in the years to come, because we have a lot in store for you.