CIA Triad: Confidentiality, Integrity, Availability

Security Control Types: Preventive, Detective, Corrective, Deterrent, Compensating

Security Governance & Policies: AUP, Security Policies, Standards, Guidelines

AAA: Authentication, Authorization, Accounting

Security Frameworks: NIST, ISO 27001, CIS Controls

Security Concepts: Threat Actors, Vulnerability, Risk, Exploits

Cybersecurity Job Roles & Responsibilities

Hands-on Lab: Implementing Security Controls in Windows/Linux

Cryptographic Concepts: Symmetric vs. Asymmetric, Hashing, Digital Signatures

Key Management: PKI, Certificate Authority, Key Exchange Methods

Encryption: Data at Rest, Data in Transit, End-to-End Encryption

Certificate Revocation: CRL, OCSP, Stapling

Secure Hashing Algorithms: MD5, SHA, HMAC

Change Management Process: Testing, Approvals, Rollback Plans

Business Processes Affecting Security

Hands-on Lab: Implementing Encryption with OpenSSL

Digital Certificates: Wildcard, SAN, Self-Signed, Root Certificates

Authentication Methods: SSO, Federation, Smart Cards, Biometrics

Access Control Models: DAC, MAC, RBAC, ABAC

Secure Authentication Protocols: LDAP, RADIUS, TACACS+

Password Security: Salting, Hashing, Password Policies

Multi-Factor Authentication (MFA) Implementation

Secure Token Services: OAuth, SAML, OpenID Connect

Hands-on Lab: Configuring LDAP Authentication

Physical Security: CCTV, Guards, Locks, Mantraps, Bollards

Secure Design Principles: Zero Trust, Defense in Depth, Layered Security

Security Policies & Procedures: Onboarding, Offboarding, Background Checks

Deception Techniques: Honeypots, Honeytokens, Sandboxing

Secure Coding Practices: Input Validation, Code Obfuscation

Social Engineering Defenses & Security Awareness Training

Access Control Mechanisms: ACLs, RBAC, Least Privilege, PAM

Hands-on Lab: Configuring File Permissions & Access Controls

Threat Actors: Script Kiddies, Hacktivists, Insider Threats, Nation-State Actors

Attack Vectors: Social Engineering, Phishing, Watering Hole Attacks

Threat Intelligence: OSINT, ISACs, STIX/TAXII, Threat Feeds

MITRE ATT&CK Framework

Risk Management Concepts: Threat, Vulnerability, Risk, Exploit

Indicators of Attack vs. Indicators of Compromise (IoA vs. IoC)

TTPs (Tactics, Techniques, and Procedures) in Cyber Attacks

Hands-on Lab: Analyzing Threat Intelligence Feeds

Malware Types: Viruses, Worms, Ransomware, Trojans, Rootkits

Social Engineering: Baiting, Pretexting, Tailgating, Piggybacking

Credential Attacks: Brute Force, Dictionary Attacks, Password Spraying

Fileless Malware, Living Off the Land (LotL) Attacks

Phishing Variants: Spear Phishing, Whaling, Vishing, Smishing

Mobile Device Security: Jailbreaking, Rooting, SIM Swapping

Insider Threats & Behavioral Analytics

Hands-on Lab: Using Wireshark to Detect Malware Traffic

Types of Vulnerabilities: Buffer Overflow, SQL Injection, XSS, CSRF

Common Vulnerability Scoring System (CVSS): Understanding severity levels

Zero-Day Exploits & Vulnerability Research

Exploit Kits & Delivery Mechanisms

Vulnerability Scanning Tools: Nessus, OpenVAS, Qualys

Patch Management & Mitigation Strategies

Common Vulnerabilities in Web & Cloud Environments

Hands-on Lab: Conducting a Vulnerability Scan with Nessus

Network Attacks: Man-in-the-Middle (MitM), ARP Spoofing, DNS Poisoning

Denial of Service (DoS) & Distributed Denial of Service (DDoS) Attacks

Botnets & Command-and-Control (C2) Infrastructure

DNS Tunneling & Data Exfiltration Techniques

Firewall & Intrusion Detection System (IDS) Evasion Techniques

Network Traffic Analysis & Anomaly Detection

Countermeasures: Network Segmentation, Honeypots, Sinkholes

Hands-on Lab: Detecting and Mitigating a DDoS Attack

Introduction to APTs: Nation-state & highly sophisticated attacks

APT Attack Lifecycle: Initial Access, Persistence, Lateral Movement, Exfiltration

Incident Response Frameworks: NIST, SANS, Cyber Kill Chain

Forensic Evidence Collection & Chain of Custody

Memory Forensics & Disk Analysis

Threat Hunting Techniques: Identifying hidden threats

Developing an Incident Response Playbook

Hands-on Lab: Simulating & Responding to a Cyber Incident

Security Frameworks: NIST, ISO 27001, CIS Benchmarks, COBIT

Cloud Security Models: IaaS, PaaS, SaaS & Security Considerations

Shared Responsibility Model in Cloud Security

Secure Cloud Networking: VPNs, Zero Trust, Cloud Firewalls

Identity and Access Management (IAM) in Cloud: Roles, Policies, MFA

Cloud Security Controls: CASB (Cloud Access Security Broker), CSPM, CWPP

Virtualization Security: Hypervisors, Snapshots, Isolation Techniques

Hands-on Lab: Configuring IAM Policies in AWS/Azure

Network Security Principles: Zero Trust, Least Privilege, Segmentation

Perimeter Security: Firewalls, IDS/IPS, NAC (Network Access Control)

Secure Network Design: DMZ, VLANs, Microsegmentation

Secure Remote Access: VPNs, SDP (Software-Defined Perimeter)

Network Traffic Monitoring & Anomaly Detection

Wireless Security: WPA3, Rogue AP Detection, Wireless Penetration Testing

DDoS Protection Strategies: Rate Limiting, Scrubbing Services

Hands-on Lab: Configuring Network Segmentation with VLANs

Security by Design Principles: Least Privilege, Separation of Duties

System Hardening & Secure Configurations: OS & Application Security

Data Protection Strategies: Data Classification, DLP (Data Loss Prevention)

Encryption & Key Management: AES, RSA, HSM (Hardware Security Modules)

Secure Storage & Database Security

Cloud Data Security: Encryption at Rest, In Transit, and In Use

Backup & Disaster Recovery Strategies

Hands-on Lab: Implementing Disk & Database Encryption

Secure Software Development Lifecycle (SDLC)

Common Web Security Vulnerabilities: OWASP Top 10

Secure Coding Practices: Input Validation, Secure Authentication

DevSecOps: Integrating Security into CI/CD Pipelines

Container Security: Docker, Kubernetes Hardening

API Security Best Practices

Infrastructure as Code (IaC) Security: Terraform, Ansible Hardening

Hands-on Lab: Automating Security Scans in a CI/CD Pipeline

Server Hardening: Disabling Unnecessary Services, Secure Configurations

Secure Coding Practices: Code Reviews, Static & Dynamic Analysis

Patch Management Strategies

Logging & Monitoring Best Practices

SIEM & Log Correlation Techniques

Anti-Phishing & Social Engineering Protection

Secure API Development & Hardening

Hands-on Lab: Hardening a Windows/Linux Server

SOC Operations & Incident Handling Process

Threat Intelligence & Threat Hunting Techniques

Log Analysis & Correlation: Detecting Suspicious Activity

SIEM & SOAR (Security Orchestration, Automation, Response)

Endpoint Detection & Response (EDR) Strategies

Behavioral Analytics & Insider Threat Detection

Automating Threat Response with SOAR

Hands-on Lab: Investigating Security Events in a SIEM

Introduction to Digital Forensics: Memory, Disk, Network Forensics

Forensic Evidence Collection & Chain of Custody

File System & Registry Analysis

Memory & Malware Forensics

Log & Event Timeline Analysis

Network Traffic & Packet Capture Analysis

Legal & Compliance Considerations in Forensics

Hands-on Lab: Performing a Disk & Memory Forensics Investigation

Incident Response Phases: Preparation, Detection, Containment, Eradication, Recovery

NIST & SANS Incident Response Frameworks

Threat Containment Strategies: Quarantine, Network Isolation

Incident Response Playbook Development

Ransomware Response & Recovery Strategies

Crisis Communication & Reporting

Post-Incident Analysis & Lessons Learned

Hands-on Lab: Simulating & Responding to a Cyber Incident

Red Team vs. Blue Team Exercises

Ethical Hacking & Penetration Testing

Defensive Security Strategies: Threat Hunting, Deception Techniques

Adversary Emulation & Purple Teaming

Capture the Flag (CTF) Challenges

Final Review & Assessment

Certification & Career Path Recommendations

Hands-on Lab: Red Team vs. Blue Team Exercise

Regulatory Compliance: GDPR, HIPAA, PCI-DSS, SOX, FISMA

Security Audits & Risk Assessments

Security Awareness & Training Programs

Legal & Ethical Considerations in Cybersecurity

Corporate Security Policies: Data Handling, BYOD, Remote Work Policies

Privacy Regulations & Data Protection Laws

Insider Threat Programs & Behavioral Monitoring

Hands-on Lab: Conducting a Security Audit

Risk Management Frameworks: NIST RMF, ISO 31000

Risk Assessment Methodologies: Qualitative vs. Quantitative

Risk Treatment Strategies: Accept, Transfer, Mitigate, Avoid

Threat Modeling Techniques: STRIDE, DREAD

Third-Party & Supply Chain Risk Management

Business Continuity & Disaster Recovery Planning

Security Metrics & KPIs

Hands-on Lab: Conducting a Risk Assessment

Business Continuity Planning (BCP) & Disaster Recovery (DR)

Developing an Incident Response Plan (IRP)

Testing and Exercising BCP & DR Plans

Crisis Management & Communication Strategies

Legal & Regulatory Considerations in Incident Response

Cyber Insurance & Risk Transfer Strategies

Tabletop Exercises for Security Incidents

Hands-on Lab: Simulating a Business Continuity & Disaster Recovery Plan

Developing Security Policies & Procedures

Enforcing Security Controls & Governance

Compliance Auditing & Reporting

Managing Audit Logs & Security Evidence

Regulatory Penalties & Non-Compliance Risks

Aligning Business & Security Objectives

Security Policy Lifecycle Management

Hands-on Lab: Writing and Implementing a Security Policy

Full-Length Security+ Practice Exam

Hands-on Penetration Testing Challenge

Security Incident Response Case Study

Ethical Hacking & Red Team vs. Blue Team

SOC (Security Operations Center) Simulation

Cyber Range Challenge: Threat Hunting & Analysis

Resume Building & Job Interview Prep

Capstone Project Presentation