Vol. 10 No. 1 (2023): Journal of The Colloquium for Information Systems Security Education
Journal of The Colloquium for Information Systems Security Education

The Journal of the 26th Colloquium for Information Systems Security Education (CISSE) represents a success of virtual conferencing as we look to meet in Kennesaw, Georgia next year in person, knowing with confidence that should circumstances change we will have continuity options online for members.

This journal embodies contributions of authors from around the world, as we collaborate to enhance the cyber resilience of society. Papers this year were aligned around the Conference theme Pedagogy for Cybersecurity across an increasing range of disciplines that ranged from teaching software defined networking and the use of virtual laboratories to the Internet of Things and the socio-psychological implications of cybersecurity.

The CISSE is a key gathering place for many of the leaders of the National Centers for Academic Excellence in Cybersecurity. The annual meeting has been continuous for 26 years and offers an opportunity for all educators to see the advances in the field of cybersecurity education. In addition, CISSE offers a particular welcome to young cybersecurity educators and offers a way of connecting and finding collaborative opportunities with those who have common research interests.

This year 21 Papers were accepted that came from across the US and internationally. The journal publishes all submitted papers of significant value to the Colloquium members and the field, after passing a peer review process and review by the Editorial Board.

This year's papers reflect innovative developments in the curricular and laboratory content, with more professional context to increase students’ level of engagement and vision for their future. Work on psychometrics, adversarial thinking, risk management, and social media reflect an expanding interdisciplinary dynamic within cybersecurity education that reflects both an increased maturity within cybersecurity analysis and pedagogical techniques. Gamification is also advancing and becoming more productive as it applies to tabletop exercises, cyber ranges, and hands-on labs.

The CISSE continues to use CrossRef for its DOIs and inclusion in research databases representing increased accessibility to our author’s research and will continue to be indexed on Google Scholar. All papers available through OpenJournal at cisse.info and papers use the IEEE template to increase our opportunities for follow-on publication opportunities. New this year is the use of ORCID numbers for all authors to make it easier for researchers to find CISSE authors as their professional circumstances change, and the requirement to use DOI links in citations.

We welcome the 2022 Conference on Cybersecurity Education, Research and Practice (CCERP) as a separate track in the virtual conference this year with CISSE. A portion of their proceedings are published in a separate section within the hard copy of the Journal of the Colloquium. Thanks very much to Dr. Michael Whitman and Dr. Herbert Mattord for their amazing collaboration and generous offer to host the 27th Colloquium in Kennesaw, Georgia in November of 2023.

Copyright of the content remains in the hands of the authors, with free distribution encouraged. Usage requests in publication should be made directly to the authors.

The Editorial Board would like to thank all those who participated, in particular the journal’s Program Committee members who enabled the peer review process. This allowed us to maintain the high standards of the journal and improved the Editorial Board’s review process. Thanks to Erik Fretheim and Denise Kinsey for organizing the conference again this year. And thank you to the Board of Directors and Officers of the Colloquium, who provided essential leadership and guidance under Chairman & Co-founder William “Vic” Maconachy.

The Editorial Board:

Erik Moore, Editor-in-Chief
Dan Likarish, Associate Editor
Denise Kinsey, Associate Editor
Abhishek Parakh, Associate Editor
John Girard, Associate Editor
Andrew Belón, Production Editor

Articles

Brian Gardner, Maryam Roshanaei, J. Andrew Landmesser, Jennifer Breese, Michael Bartolacci
pp. 5
Addressing the Cybersecurity Issues and Needs of Rural Pennsylvania Nonprofit Organizations
https://doi.org/10.53735/cisse.v10i1.155
PDF
Robert C. Hall, Mary Ann Hoppa, Yen-Hung Hu
pp. 8
An Empirical Study of Password Policy Compliance
https://doi.org/10.53735/cisse.v10i1.156
PDF
Jordan Whyte, Gaby G. Dagher, Sara Hagenah
pp. 6
BEACON Labs: Designing Hands-on Lab Modules with Adversarial Thinking for Cybersecurity Education
https://doi.org/10.53735/cisse.v10i1.157
PDF
Randy J. Hinrichs, Viatcheslav M. Popovsky, Barbara Endicott-Popovsky
pp. 9
Bringing the Industry Partner to the Cybersecurity Education Table as an Active Participant
https://doi.org/10.53735/cisse.v10i1.158
PDF
Tiffany Fuhrmann, Taegan Williams, Michael Haney
pp. 6
Cyber-physical Shooting Gallery: Gamification to Address the IT-OT Gap in Cybersecurity Education
https://doi.org/10.53735/cisse.v10i1.159
PDF
Alejandro D. Ayala, Barbara Endicott-Popovsky, Randy J. Hinrichs
pp. 5
CyberAlumni a Cybersecurity Collaboratory
https://doi.org/10.53735/cisse.v10i1.160
PDF
Sherri Weitl-Harms, Adam Spanier, John Hastings, Matthew Rokusek
pp. 7
Framing Gamification in Undergraduate Cybersecurity Education
https://doi.org/10.53735/cisse.v10i1.161
PDF
Maeve Dion
pp. 6
Improving Workplace and Societal Cybersecurity via Post-Secondary General Education
https://doi.org/10.53735/cisse.v10i1.162
PDF
Jonathan White, Phil Legg, Alan Mills
pp. 6
Interactive Cyber-Physical System Hacking: Engaging Students Early Using Scalextric
https://doi.org/10.53735/cisse.v10i1.163
PDF
Harini Ramaprasad, Meera Sridhar, Erik Akeyson
pp. 8
Interactive Program Visualization to Teach Stack Smashing: An Experience Report
https://doi.org/10.53735/cisse.v10i1.164
PDF
Michael Whitman, Herbert Mattord
pp. 6
Meeting the Challenges of Large Online Graduate Cybersecurity Classes in the Age of COVID
https://doi.org/10.53735/cisse.v10i1.165
PDF
Souvik Das, Kamil Sarac
pp. 7
Practical Labs for Teaching SDN Security
https://doi.org/10.53735/cisse.v10i1.166
PDF
Taegan Williams, Tiffany Fuhrmann, Michael Haney
pp. 10
RADICL CTF: Low-Cost CTF Platform for Industrial Control Systems Education
https://doi.org/10.53735/cisse.v10i1.167
PDF
Amy Kuiken
pp. 9
Security Mindset Fundamentals and Second Language Learning
https://doi.org/10.53735/cisse.v10i1.168
PDF
Basil Hamdan
pp. 5
Simulating Cybersecurity Risk Using Advanced Quantitative Risk Assessment Techniques: A Teaching Case Study
https://doi.org/10.53735/cisse.v10i1.169
PDF
Jason M. Pittman, Helen G. Barker, Shaho Alaee
pp. 11
Structure or Anarchy: A Bibliometric Analysis of Keywords in Cybersecurity Education Literature
https://doi.org/10.53735/cisse.v10i1.170
PDF
Garry L. White
pp. 9
Teaching Case: Election Security and Technology Education
https://doi.org/10.53735/cisse.v10i1.171
PDF
Phil Legg, Alan Mills, Ian Johnson
pp. 9
Teaching Offensive and Defensive Cyber Security in Schools using a Raspberry Pi Cyber Range
https://doi.org/10.53735/cisse.v10i1.172
PDF
Christopher Morales-Gonzalez, Matthew Harper, Xinwen Fu
pp. 6
Teaching Software Security to Novices With User Friendly Armitage
https://doi.org/10.53735/cisse.v10i1.173
PDF
Sinan Ameen Noman, Travis Atkison
pp. 7
Techniques to Overcome Network Attacks (Sybil Attack, Jamming Attack, Timing Attack) in VANET
https://doi.org/10.53735/cisse.v10i1.174
PDF
Angela Orebaugh, Jack Davidson, Deborah Johnson, Daniel Graham, Worthy Martin
pp. 6
Virginia Cyber Navigator Internship Program (VA-CNIP): Service Learning in Local Election Security
https://doi.org/10.53735/cisse.v10i1.175
PDF