Certified Network Defender Certification

Certified Network Defender Certification

Module 1: Network Attacks and Defence Strategies

• Attack

• Threat

• Threat Sources

• Threat Actors

• Vulnerability

• Risk

• Network Attacks

• Application Attacks

• Social Engineering Attacks

• Email Attacks

• Mobile Attacks

• Cloud Attacks

• Supply Chain Attacks

• Wireless Attacks

• Hacking Methodologies and Frameworks

• Adaptive Security Strategy

• Defence-in-depth Security
   

Module 2: Administrative Network Security

• Compliance

• Regulatory Frameworks

• Security Policies

• Security Awareness

• Asset Management

• Recent Cybersecurity Trends
   

Module 3: Technical Network Security

• Access Controls

• Authentication

• Authorisation

• Accounting (AAA)

• IAM

• Cryptography

• Network Segmentation

• Zero Trust

• Network Security Controls

• Network Security Protocols
   

Module 4: Network Perimeter Security

• Firewalls

• Firewall Types

• Firewall Topologies

• Firewall Selection

• Firewall Implementation and Deployment

• Firewall Administration

• IDS/IPS

• IDS/IPS Classification

• IDS/IPS Selection

• False Positives

• False Negatives

• Router Security

• Switch Security

• Software-defined Perimeter (SDP)
   

Module 5: Endpoint Security-Windows Systems

• Windows Security Risks

• Windows Security Components

• Windows Security Features

• Windows Security Baseline Configurations

• User Account and Password Management

• Windows Patch Management

• Windows User Access Management

• Active Directory Security

• Windows Network Services and Protocol Security

• Windows Security Best Practices
   

Module 6: Endpoint Security-Linux Systems

• Linux Security Risks

• Linux Installation and Patching

• Linux User Access and Password Management

• Linux OS Hardening Techniques

• Linux Network and Remote Access Security

• Linux Security Tools and Frameworks
   

Module 7: Endpoint Security- Mobile Devices

• Bring Your Own Device (BYOD)

• Choose Your Own Device (CYOD)

• Corporate Owned, Personally Enabled (COPE)

• Company Owned, Business Only (COBO)

• Mobile Device Management (MDM)

• Mobile Application Management (MAM)

• Mobile Threat Defence (MTD)

• Unified Endpoint Management (UEM)

• Mobile Email Management (MEM)

• Mobile Content Management (MCM)

• Enterprise Mobility Management (EMM)

• Mobile Device Security

• Android Security

• iPhone Security
   

Module 8: Endpoint Security-IoT Devices

• IoT Devices

• IoT Application Areas

• IoT Ecosystem

• IoT Communication Models

• IoT-Enabled Environments

• IoT Security Risk and Challenges

• IoT Security in IoT-Enabled IT Environments

• IoT Security Tools

• IoT Security Best Practices

• IoT Security Standards, Initiatives, and Efforts
   

Module 9: Administrative Application Security

• Application Whitelisting

• Application Blacklisting

• Application Sandboxing

• Application Patch Management

• Web Application Firewalls (WAFs)
   

Module 10: Data Security

• Data Security

• Data Encryption Data at Rest

• Data Encryption at Transit

• Data Masking

• Data Backup

• Data Retention

• Data Destruction

• Data Loss Prevention (DLP)

• Data Integrity
   

Module 11: Enterprise Virtual Network Security

• Network Virtualisation (NV)

• Software-defined Network (SDN)

• Network Function Virtualisation (NFV) Security

• OS Virtualisation Security

• Container Security

• Docker Security

• Kubernetes Security
   

Module 12: Enterprise Cloud Network Security

• Cloud Computing

• Cloud Security

• Shared Responsibility Model

• Amazon Cloud (AWS) Security

• Microsoft Azure Cloud Security

• Google Cloud Platform (GCP) Security
   

Module 13: Enterprise Wireless Network Security

• Wireless Network

• Wireless Standards

• Wireless Topologies

• Wireless Network Components

• Wireless Network Encryption

• Wireless Network Authentication

• Wireless Network Security Measures

• Wi-Fi Security Tools
   

Module 14: Network Traffic Monitoring and Analysis

• Network Traffic Monitoring

• Baseline Traffic Signatures

• Suspicious Network Traffic Signatures

• Threat Detection with Wireshark

• Bandwidth Monitoring

• Performance Monitoring

• Network Anomaly Detection

• Behaviour Analysis
   

Module 15: Network Logs Monitoring and Analysis

• Logs

• Windows Log Analysis

• Linux Log Analysis

• Mac Log Analysis

• Firewall Log Analysis

• Router Log Analysis

• Web Server Log Analysis

• Centralised Log Management
   

Module 16: Incident Response and Forensic Investigation

• First Responder

• Incident Handling and Response Process

• SOAR

• Endpoint Detection and Response (EDR)

• Extended Detection and Response (XDR)

• Forensics Investigation
   

Module 17: Business Continuity and Disaster Recovery

• Business Continuity (BC)

• Disaster Recovery (DR)

• Business Continuity Management (BCM)

• BC/DR Activities

• Business Impact Analysis (BIA)

• Recovery Time Objective (RTO)

• Recovery Point Objective (RPO)

• Business Continuity Plan (BCP)

• Disaster Recovery Plan (DRP)
   

Module 18: Risk Anticipation with Risk Management

• Risk Management

• Risk Identification

• Risk Assessment

• Risk Treatment

• Risk Treatment Steps

• Risk Tracking and Review

• Risk Management Frameworks (RMFs)

• Vulnerability Management

• Vulnerability Scanning

• Vulnerability Reporting

• Privacy Impact Assessment (PIA)
   

Module 19: Threat Assessment with Attack Surface Analysis

• Attack Surface

• Attack Surface Analysis

• System Attack Surface

• Network Attack Surface

• Software Attack Surface

• Physical Attack Surface

• Human Attack Surface

• Indicators of Exposures (IoEs)

• Attack Simulation

• Attack Surface Reduction

• Attack Surface Monitoring Tools

• Cloud and IoT Attack Surface Analysis
   

Module 20: Threat Prediction with Cyber Threat Intelligence

• Cyber Threat Intelligence

• Threat Intelligence Types

• Indicators of Compromise (IoCs)

• Indicators of Attack (IoA)

• Threat Intelligence Layers

• Threat Intelligence Sources

• Threat Intelligence Feeds

• Threat Intelligence Platforms (TIP)

• Threat Hunting