Duty Managers Cyber Resilience Training Course

This instructor-led, live training in [location] (online or onsite) is designed for beginner-level cybersecurity professionals who wish to learn how to leverage artificial intelligence (AI) for enhanced threat detection and response capabilities. By the end of this training, participants will be able to: - Comprehend AI applications in cybersecurity. - Apply AI algorithms for threat detection. - Automate incident response using AI tools. - Integrate AI into existing cybersecurity infrastructure for government.

This instructor-led, live training (available online or on-site) is designed for intermediate to advanced cybersecurity professionals who aim to enhance their skills in AI-driven threat detection and incident response for government. By the end of this training, participants will be able to: - Implement advanced AI algorithms for real-time threat detection. - Customize AI models to address specific cybersecurity challenges. - Develop automation workflows for efficient threat response. - Ensure the security of AI-driven tools against adversarial attacks.

This instructor-led, live training in [location] (online or onsite) is aimed at intermediate-level IT security professionals who wish to enhance their skills in security monitoring, analysis, and response for government agencies. By the end of this training, participants will be able to: - Understand the role of a Blue Team in cybersecurity operations for government. - Utilize SIEM tools for comprehensive security monitoring and log analysis. - Identify, analyze, and respond effectively to security incidents. - Conduct network traffic analysis and gather threat intelligence. - Implement best practices in security operations center (SOC) workflows for government.

Bug Bounty Hunting is the practice of identifying security vulnerabilities in software, websites, or systems and responsibly reporting them for rewards or recognition.

This instructor-led, live training (online or onsite) is designed for government agencies and aimed at beginner-level security researchers, developers, and IT professionals who wish to learn the fundamentals of ethical bug hunting and how to participate in bug bounty programs.

By the end of this training, participants will be able to:

• Understand the core concepts of vulnerability discovery and bug bounty programs for government systems.
• Utilize key tools such as Burp Suite and browser development tools for testing applications.
• Identify common web security flaws, including XSS, SQLi, and CSRF.
• Submit clear, actionable vulnerability reports to bug bounty platforms.

Format of the Course

• Interactive lecture and discussion.
• Hands-on use of bug bounty tools in simulated testing environments.
• Guided exercises focused on discovering, exploiting, and reporting vulnerabilities.

Course Customization Options

• To request a customized training for this course based on your organization's applications or testing needs, please contact us to arrange.

Bug Bounty: Advanced Techniques and Automation is an in-depth exploration of high-impact vulnerabilities, automation frameworks, reconnaissance techniques, and tooling strategies utilized by top bug bounty hunters.

This instructor-led, live training (available online or on-site) is designed for intermediate to advanced security researchers, penetration testers, and bug bounty hunters who aim to automate their workflows, scale reconnaissance efforts, and uncover complex vulnerabilities across multiple targets.

By the end of this training, participants will be able to:

• Automate reconnaissance and scanning processes for multiple targets.
• Utilize cutting-edge tools and scripts for bounty automation.
• Identify complex, logic-based vulnerabilities that go beyond standard scans.
• Develop custom workflows for subdomain enumeration, fuzzing, and reporting.

Format of the Course

• Interactive lectures and discussions.
• Hands-on use of advanced tools and scripting for automation.
• Guided labs focused on real-world bounty workflows and advanced attack chains.

Course Customization Options

• To request a customized training for government or other specific contexts based on your unique bounty targets, automation needs, or internal security challenges, please contact us to arrange.

This instructor-led, live training (online or onsite) is designed for government security analysts and system administrators at the beginner to intermediate level who seek to establish a foundational understanding of Cyber Defence analysis within Security Operations Centers (SOCs).

By the end of this training, participants will be able to:

• Understand the principles of Security Management in the context of Cyber Defence.
• Execute effective Incident Response strategies to mitigate security incidents for government agencies.
• Implement Security Education practices to enhance organizational awareness and preparedness within public sector organizations.
• Manage and analyze Security Information for proactive threat identification in government environments.
• Utilize Event Management techniques to monitor and respond to security events effectively.
• Implement Vulnerability Management processes to identify and address system vulnerabilities in government systems.
• Develop skills in Threat Detection to identify and respond to potential cyber threats within government networks.
• Participate in Simulated Attacks to test and improve incident response capabilities for government operations.

The Certified Digital Forensics Examiner (CDFE) vendor-neutral certification is designed to equip Cyber Crime and Fraud Investigators with the skills necessary for electronic discovery and advanced investigation techniques. This training is essential for anyone who encounters digital evidence during an investigation. The CDFE training program instructs participants on the methodology for conducting a computer forensic examination. Students will learn to employ forensically sound investigative methods, including evaluating the scene, collecting and documenting relevant information, interviewing key personnel, maintaining chain of custody, and preparing detailed findings reports. The CDFE course is beneficial for organizations, individuals, government offices, and law enforcement agencies that are interested in pursuing litigation, proving guilt, or taking corrective action based on digital evidence. This certification supports the need for rigorous and reliable forensic practices for government and other sectors.

The Certified Incident Handler course provides a structured approach to managing and responding to cybersecurity incidents effectively and efficiently.

This instructor-led, live training (available online or onsite) is designed for intermediate-level IT security professionals who wish to develop the tactical skills and knowledge needed to plan, classify, contain, and manage security incidents for government agencies.

By the end of this training, participants will be able to:

• Understand the incident response lifecycle and its phases.
• Execute incident detection, classification, and notification procedures.
• Apply containment, eradication, and recovery strategies effectively.
• Develop post-incident reporting and continuous improvement plans.

Format of the Course

• Interactive lecture and discussion.
• Hands-on use of incident handling procedures in simulated scenarios.
• Guided exercises focused on detection, containment, and response workflows.

Course Customization Options

• To request a customized training for this course based on your organization's specific incident response procedures or tools, please contact us to arrange.

This instructor-led, live training (conducted online or onsite) is designed for intermediate-level cybersecurity professionals who aim to implement CTEM in their organizations. By the end of this training, participants will be able to: - Understand the principles and stages of CTEM. - Identify and prioritize risks using CTEM methodologies. - Integrate CTEM practices into existing security protocols. - Utilize tools and technologies for continuous threat management. - Develop strategies to validate and improve security measures continuously, ensuring alignment with public sector workflows and governance for government.

This course addresses the management of an incident response team, emphasizing the role of the first responder. Given the frequency and complexity of today's cyber attacks, incident response is a critical function for organizations, including those in the public sector. Incident response serves as the last line of defense, and detecting and efficiently responding to incidents necessitates robust management processes. Managing an incident response team requires specialized skills and knowledge, particularly for government agencies where governance and accountability are paramount.

This instructor-led, live training in US (online or onsite) is designed for advanced-level cybersecurity professionals who seek to deepen their understanding of Cyber Threat Intelligence and acquire the skills necessary to effectively manage and mitigate cyber threats for government operations.

By the end of this training, participants will be able to:

• Understand the foundational principles of Cyber Threat Intelligence (CTI).
• Assess the current landscape of cyber threats relevant to government agencies.
• Gather and process intelligence data to support decision-making.
• Conduct advanced threat analysis to identify and respond to potential risks.
• Utilize Threat Intelligence Platforms (TIPs) and automate threat intelligence processes for enhanced operational efficiency.

This instructor-led, live training, available online or on-site, provides a comprehensive overview of enterprise security for government, encompassing topics from artificial intelligence to database protection. The course also delves into the most recent tools, procedures, and strategic thinking required to safeguard against cyber threats.

This course will immerse participants into an interactive environment where they will learn how to scan, test, hack, and secure their own systems. The lab-intensive format provides each participant with in-depth knowledge and practical experience with essential security systems currently in use. Participants will start by understanding the mechanics of perimeter defenses before progressing to scanning and attacking their own networks, ensuring no real network is compromised. They will then learn how intruders escalate privileges and the steps necessary to secure a system. The curriculum also covers Intrusion Detection, Policy Creation, Social Engineering, DDoS Attacks, Buffer Overflows, and Virus Creation. Upon completion of this intensive five-day course, participants will have hands-on understanding and experience in ethical hacking, specifically tailored for government applications. ### Purpose of the Ethical Hacking Training The primary objectives of the Ethical Hacking Training are to: - Establish and govern minimum standards for credentialing professional information security specialists in ethical hacking measures. - Inform the public that credentialed individuals meet or exceed these minimum standards. - Reinforce ethical hacking as a unique and self-regulating profession. ### Audience This course is ideal for professionals working in positions such as, but not limited to: - Security Engineers - Security Consultants - Security Managers - IT Directors/Managers - Security Auditors - IT Systems Administrators - IT Network Administrators - Network Architects - Developers

Why Should You Attend?

The Certified Lead Ethical Hacker training course equips you with the essential expertise to conduct information system penetration tests by applying recognized principles, procedures, and techniques. This course will help you identify potential threats on computer networks and manage a penetration testing project or team effectively. During the training, you will learn how to plan and perform both internal and external penetration tests in compliance with standards such as the Penetration Testing Execution Standard (PTES) and the Open Source Security Testing Methodology Manual (OSSTMM). Additionally, you will gain a comprehensive understanding of drafting reports and proposing countermeasures. Through practical exercises, you will master penetration testing techniques and develop skills in managing a pentest team, customer communication, and conflict resolution.

This training provides a technical overview of information security through ethical hacking, using common methods like information gathering and vulnerability detection within and outside business networks. The course is aligned with the NICE (National Initiative for Cybersecurity Education) Protect and Defend framework, ensuring that it meets industry standards and best practices.

After acquiring the necessary knowledge and skills in ethical hacking, you can take the exam to earn the "PECB Certified Lead Ethical Hacker" credential. Holding this certificate demonstrates your proficiency in performing and managing penetration tests according to established best practices, which is crucial for government and private sector roles alike.

Who Should Attend?

• Individuals interested in IT security and ethical hacking, whether to deepen their knowledge or explore a career change.
• Information security officers and professionals seeking to master ethical hacking and penetration testing techniques.
• Managers and consultants who want to learn how to oversee the penetration testing process effectively.
• Auditors aiming to conduct professional penetration tests.
• Personnel responsible for maintaining the security of information systems in an organization.
• Technical experts looking to prepare for and execute pentests.
• Cybersecurity professionals and members of information security teams who need advanced skills for their roles.

The Certified Ethical Hacker (CEH) certification is highly sought after in the field of cybersecurity, both domestically and internationally.

This program includes comprehensive instruction and practical exercises designed to prepare students for the CEH certification exam and the CEH Practical Exam. Successfully passing both exams confers the CEH Master credential along with the CEH certification.

Students have the option to add either the CPENT or the CHFI course to their training package.

The Certified Penetration Testing Professional (CPENT) course or the Computer Hacking Forensic Investigator (CHFI) course will be provided to each student through EC-Council’s online, self-paced, streaming video program for government use.

CPENT (Pen-test):
This course teaches students how to apply the concepts and tools covered in the CEH program to a penetration testing methodology within a live cyber range environment.

CHFI (Computer Forensics):
This course provides a methodological approach to computer forensics, including techniques for searching and seizing digital evidence, maintaining chain-of-custody, acquiring, preserving, analyzing, and reporting on digital evidence.

Course Description

The CEH program offers an in-depth understanding of ethical hacking phases, various attack vectors, and preventative countermeasures. It will equip you with the knowledge to understand how hackers think and operate maliciously, thereby enabling you to better secure your organization’s infrastructure and defend against future attacks. An awareness of system weaknesses and vulnerabilities helps organizations enhance their security controls and minimize the risk of incidents.

The CEH curriculum is designed to provide a hands-on environment and systematic process across each ethical hacking domain and methodology, giving students the opportunity to demonstrate the knowledge and skills necessary to earn the CEH credential. You will gain a new perspective on the responsibilities and measures required to maintain security.

Who Should Attend

• Law enforcement personnel
• System administrators
• Security officers
• Defense and military personnel
• Legal professionals
• Bankers
• Security professionals

About the Certified Ethical Hacker Master

To earn the CEH Master certification, you must pass the CEH Practical exam. The CEH Practical Exam is designed to assess students' ability to apply the principles taught in the CEH course. This practical exam requires you to demonstrate ethical hacking techniques such as threat vector identification, network scanning, OS detection, vulnerability analysis, system hacking, and more.

The CEH Practical does not include simulations; instead, it involves challenging a live range that mimics a corporate network using live virtual machines, networks, and applications. Successfully completing the challenges in the CEH Practical Exam is the next step after obtaining the Certified Ethical Hacker (CEH) certification. Passing both the CEH exam and the CEH Practical will earn you the additional certification of CEH Master.

About the Certified Ethical Hacker Practical

To demonstrate your proficiency in ethical hacking, we assess your abilities through real-world challenges in a realistic environment. This involves using labs and tools to complete specific ethical hacking tasks within a time limit, mirroring real-world scenarios.

The EC-Council CEH (Practical) exam features a complex network that simulates a large organization’s real-life network infrastructure, including various systems such as DMZs and firewalls. You must apply your ethical hacking skills to discover and exploit live vulnerabilities while also auditing the systems.

About CPENT

EC-Council’s Certified Penetration Tester (CPENT) program focuses on penetration testing in an enterprise network environment that requires attack, exploitation, evasion, and defense. If you have experience working only in flat networks, CPENT’s live practice range will elevate your skills by teaching you to test IoT systems, OT systems, write your own exploits, build custom tools, conduct advanced binary exploitation, double pivot to access hidden networks, and customize scripts and exploits to penetrate the innermost segments of a network.

About CHFI

The Computer Hacking Forensic Investigator (CHFI) course provides a vendor-neutral perspective on digital forensics. This comprehensive program covers major forensic investigation scenarios and equips students with hands-on experience in various forensic techniques and standard forensic tools necessary for conducting successful computer forensic investigations.