Four New Courses and Sixteen New Labs
Security Innovation is proud to add a combined twenty new courses and labs to the CMD+CTRL training catalog in Q1 2023. Concentrating primarily in areas such as Infrastructure Design, Computer Network Defense, Risk Management, Secure Software Development, and Vulnerability Assessment, all new content is available to learners as of January 31, 2023.
New Course Offerings
API 250 – Controlling Access to the Kubernetes API
At the core of Kubernetes' control plane is the API server and the HTTP API that it exposes. The Kubernetes API lets you query and manipulates the state of objects in Kubernetes. This course gives learners an understanding of the role secure access control plays in protecting the
Kubernetes API. Controlling who has access and what actions they are allowed to perform must be the primary concern. Learners will understand how to control the Kubernetes platform and how to use API requests as the first line of defense against attackers.
CYB 211 – Identifying and Protecting Assets Against Ransomware
Ransomware is an evolving threat to many organizations' cyber and data security. This course gives learners an understanding of the role of identifying and protecting assets in protecting against ransomware attacks. Learners will better understand the attacker's mindset and the ransomware "Business Model."
CYB 212 – Fundamentals of Security Information & Event Management (SIEM)
Security Information & Event Management platforms have become a significant component in streamlining security workflows, but as powerful as these platforms can be, they can be inherently challenging. This course teaches learners the role of Security Information & Event Management (SIEM) in your organization's overall security plan.
ICS 210 – ICS/SCADA Security Essentials
Acting as high-value targets, Supervisory Control and Data Acquisition (SCADA) and Industrial Control Systems (ICS) have seen a significant increase in the number of cyber incidents forcing organizations to evaluate how they protect these networks and industrial controllers. This course provides learners with an understanding of their role in defending Critical infrastructures.
New Skill and Learn Labs
CMD+CTRL Labs help to transform new concepts into tangible skills through hands-on, realistic examples of real-world threat scenarios. A new type of lab, Skill Labs (available only through the CMD+CTRL Base Camp learning portal), was added to the CMD+CTRL training program in early 2022 to provide learners with an active training experience complementing Courses and Learn Labs.
Skill Labs
- LAB 263 – Defending Java Applications Against Sensitive Information in Log Files
- LAB 264 – Defending Python Applications Against Sensitive Information in Log Files
- LAB 265 – Defending Node.js Applications Against Sensitive Information in Log Files
- LAB 266 – Defending C# Applications Against Sensitive Information in Log Files
- LAB 267 – Defending Java Applications Against Deserialization of Untrusted Data
- LAB 268 – Defending Python Applications Against Deserialization of Untrusted Data
- LAB 269 – Defending Node.js Applications Against Deserialization of Untrusted Data
- LAB 270 – Defending C# Applications Against Deserialization of Untrusted Data
- LAB 271 – Defending Java Applications Against SSRF
- LAB 272 – Defending Python Applications Against SSRF
- LAB 273 – Defending Node.js Applications Against SSRF
- LAB 274 – Defending C# Applications Against SSRF
- LAB 336 – ATT&CK: Data from Local System
- LAB 337 – ATT&CK: Valid Accounts
Learn Labs
- LAB 131 – Identifying Improper Restriction of XML External Entity Reference
- LAB 132 – Identifying Exposed Services
Learn more about Skill and Learn Labs in our Q2 2022 Release in Review.
All of the latest Learn Lab and Course enhancement details can be found here.
