Learn a comprehensive methodology for defending the cybersecurity of organizations.

This learning path covers network defense and incident response methods, tactics, and procedures in alignment with industry frameworks such as NIST 800-61 r.2 (Computer Security Incident Handling), US-CERT’s NCIRP (National Cyber Incident Response Plan), and Presidential Policy Directive (PPD) 41 on Cyber Incident Coordination Policy. It is ideal for candidates who have been tasked with the responsibility of monitoring and detecting security incidents in information systems and networks, and for executing standardized responses to such incidents. The path introduces tools, tactics, and procedures to manage cybersecurity risks, identify various types of common threats, evaluate the organization’s security, collect and analyze cybersecurity intelligence and remediate and report incidents as they occur. Ready to take the CertNexus Cyber First Responder® CFR-310 exam? Save 10% by using code VXH93HF4A when purchasing their CertNexus exam voucher here. After purchasing the exam voucher, you will receive an email with info regarding how to register for and schedule your exam at a Pearson VUE testing center or virtual proctoring platform, OnVUE.

Learn to use behavioral analytics to prevent, detect and combat cyber threats.

This learning path teaches you the tools and techniques used by cybersecurity analysts and prepares you for the CySA+ CS0-002 exam. Seventeen courses build on your existing security knowledge and walk you through the key concepts covered in the five CySA+ CS0-002 certification exam objectives: threat and vulnerability management, software and systems security, security operations and monitoring, incident response, and compliance and assessment. Upon completion, you’ll be prepared to earn your CySA+ certification and validate your skills as a cybersecurity analyst.

Learn to develop a well-structured framework for analyzing the security of a system.

What is the difference between doing a vulnerability assessment for a fitness tracker and an internet-connected pacemaker? Quite significant! Simple scanning may be sufficient in some cases, but others require a deeper look. In this path, you’ll learn a variety of ways to discover vulnerabilities, classify and prioritize vulnerabilities based on real-world criticality measures, define the actual risk of the vulnerabilities, create and execute an actionable remediation plan, and document and maintain a vulnerability assessment. Finally, you’ll learn some key security controls that don’t target specific vulnerabilities, but enhance the overall security of your system.

Learn about threat modeling with Rapid Threat Model Prototyping (RTMP).

Threat modeling is a process to identify security weaknesses in software design and architecture. In this path, you will explore five courses, starting with a background and top-level view of threat modeling. The second course will describe three core security frameworks that can be used with threat modeling to find threats and mitigations. The third course covers the “moving parts,” or elements of a threat model and their relationship with each other. The fourth course covers the basics of threat modeling, the fifth course introduces secure agile architecture concepts, and the sixth is a lab bringing it all together.

The Threat Intelligence learning path allows you to master the concept of threat intelligence, from intelligence analysis to building a threat intelligence program.

This learning path provides an introduction to threat intelligence with theoretical, practical and hands-on fundamentals giving students a path towards professional intelligence analysis. As you progress through the courses you will learn tools and techniques used to turn information into intelligence, apply threat intelligence methodologies and learn about threat actors.

Learn the methodology behind intrusion detection and craft detection rules and logic.

This learning path begins with an overview of intrusion detection and then dives into the data required to build various detection use cases and various open-source tools and frameworks for building and tuning your detections. Throughout the path, we will review the various aspects and frameworks that comprise intrusion detection techniques (network- and host-based) and explore real world use-cases and examples of detection methodology. At the end of this path, you will have the necessary skills to craft meaningful detections that can aid in identifying malicious activity within your organization’s environment.