Cybersecurity Proactive Defense (CPD) is an advanced-level course designed for technical personnel who monitor and protect our nation’s critical cyber infrastructure. This course prepares cyber defenders to recognize their own weaknesses by providing advanced attack vectors, sequential and escalating attack steps, and hands-on attack execution experience. CPD provides context behind a cyberterrorism attack by illustrating each attack step, the tools used to conduct the step, and the resulting impact on targeted systems.
CPD uses hands-on computer lab applications to simulate advanced attack vectors. This allows students to launch modern attack tools in a safe environment, study the way the tools work against common systems, recognize common defense deficiencies, and apply quick and effective cyber counter-terrorism techniques to quickly mitigate risks. By the end of the course, students will be able to use modern penetration testing tools, yielding both a practical application capability, and a tool recognition capability to better defend their cyber environment. Students learn penetration testing skills, defense analysis techniques, and real-time response and threat mitigation steps.
Objectives:
- the cyber-attack sequence from initial reconnaissance to eventual execution and exfiltration
- to perform a functional penetration test of various cyber environments, to include both identifying deficiencies and subsequent mitigation steps
- to recognize when your environment has been targeted by cyber-attack tools by performing post-test analysis at the conclusion of the planned penetration test
Target Audience
Technical personnel (IT professionals) working within critical infrastructure, in both the public and private sectors, who are responsible for securing agency network systems or responding to a cyber-based attack.
Mobile Training Lab
This course uses an easily transportable, laptop training center that operates via wired and wireless network technologies. This laptop training lab can be shipped and set up for training anywhere in the U.S. with minimal notice. Each laptop is preconfigured with hands-on exercises that immerse students in real-world cyberterrorism examples. Each laptop is installed with various operating systems and virtual machines to heighten the student’s awareness, test their preparation methods, and educate them on the cutting-edge threats used during cyberterrorist attacks.
Prerequisites
This is an advanced level hands-on course where specific network and security knowledge and experience are required. Alternative experience may be considered. At a minimum, an individual should have two years of experience as a network/system administrator or cybersecurity professional; an advanced understanding of networking concepts and associated design; an advanced understanding of a variety of computer operating systems; and a fundamental understanding of cyber incident response techniques.
Preferred prerequisite: In addition to the above, completion of other CDI courses (i.e., Comprehensive Cyberterrorism Defense and Cyberterrorism First Responder), some penetration testing or vulnerability testing experience, and/or experience with handling cyber incidents.