Network Engineer

Overview

The Secure Network Engineer Learning Path credential is designed to provide the security skills and knowledge required to protect infrastructure and the sensitive data it handles. The curriculum provides participants with the ability to demonstrate the competency to apply best practices for managing systems and services across all environments.

After completing this learning path learners will have the knowledge and skill to:

• Apply best practices for managing systems and services across all environments
• Improve the stability, security, efficiency, and scalability of environments
• Understand how to create and modify scripts to perform tasks

NOTE: Learn and Skill labs are elective training modules that help transform concepts into tangible skills through hands-on, realistic examples of real-world threat scenarios.

Courses

• COD 261 – Threats to Scripts
• COD 262 – Fundamentals of Shell and Interpreted Language Security
• DES 210 – Hardening Linux
• DES 214 – Securing Infrastructure Architecture

Overview

The Secure Network Engineer Learning Path credential is designed to provide the security skills and knowledge required to protect infrastructure and the sensitive data it handles. The curriculum provides participants with the ability to demonstrate the competency to apply best practices for managing systems and services across all environments.

After completing this learning path learners will have the knowledge and skill to:

• Apply best practices for managing systems and services across all environments
• Improve the stability, security, efficiency, and scalability of environments
• Understand how to create and modify scripts to perform tasks

NOTE: Learn and Skill labs are elective training modules that help transform concepts into tangible skills through hands-on, realistic examples of real-world threat scenarios.

Courses

• CYB 310 – Using Cyber Supply Chain Risk Management (C-SCRM) to Mitigate Threats to IT/OT
• CYB 311 – Threat Analysis with AI
• LAB 310 – ATT&CK: File and Directory Permissions Modification
• LAB 311 – ATT&CK: File and Directory Discovery
• LAB 315 – ATT&CK: Updating Vulnerable Java Web Application Server Software
• LAB 321 – ATT&CK: Password Cracking
• LAB 322 – ATT&CK: Exploiting Windows File Sharing Server with External Remote Services
• LAB 323 – ATT&CK: Exploiting Vulnerable Java Web Application Server Software
• LAB 324 – ATT&CK: Exploiting Java Web Application Server Misconfiguration
• LAB 330 – ATT&CK: Exploiting Java SQL Injection to Extract Password Hashes
• LAB 331 – ATT&CK: Network Service Discovery
• LAB 332 – ATT&CK: Network Share Discovery
• LAB 334 – ATT&CK: Create Account
• LAB 335 – ATT&CK: Unsecured Credentials
• LAB 336 – ATT&CK Data from Local System
• LAB 337 – ATT&CK Valid Accounts

Overview

Learning paths may include elective course content that is not required to complete SI-CSC certification exams successfully. These additional courses are suggested based on alignment with the National Initiative for Cybersecurity Education (NICE) Cybersecurity Workforce Framework. To understand how courses map to this framework, please contact us.

Courses

• API 210 – Mitigating APIs Lack of Resources & Rate Limiting
• API 211 – Mitigating APIs Broken Object Level Authorization
• API 213 – Mitigating APIs Mass Assignment
• API 214 – Mitigating APIs Improper Asset Management
• API 250 – Controlling Access to the Kubernetes API
• AWA 101 – Fundamentals of Application Security
• AWA 102 – Secure Software Concepts
• COD 110 – Fundamentals of Secure Mobile Development
• COD 263 – Secure Bash Scripting
• COD 264 – Secure Perl Scripting
• COD 265 – Secure Python Scripting
• COD 266 – Secure Ruby Scripting
• CYB 211 – Identifying and Protecting Assets Against Ransomware
• CYB 212 – Fundamentals of Security Information & Event Management (SIEM)
• DES 208 – Defending Against the CSA Top 11 Threats to Cloud Computing
• DES 209 – Authentication and Lifecycle Management
• DES 215 – Defending Infrastructure
• DES 216 – Protecting Cloud Infrastructure
• DES 218 – Protecting Microservices, Containers and Orchestration
• DES 260 – Fundamentals of IoT Architecture & Design
• DES 261 – Securing Serverless Environments
• DES 313 – Hardening a Kubernetes Cluster
• DES 314 – Hardening the Docker Engine
• DSO 211 – Identifying Threats to Containers & Data in DevSecOps Framework
• DSO 212 – Fundamentals of Zero Trust Security
• DSO 301 – Orchestrating Secure System and Service Configuration
• DSO 302 – Automated Security Testing
• DSO 303 – Automating Security Updates
• DSO 304 – Securing API Gateways in a DevSecOps Framework
• DSO 305 – Automating CI/CD Pipeline Compliance
• ENG 205 – Fundamentals of Threat Modeling
• ENG 351 – Preparing the Risk Management Framework
• ENG 352 – Categorizing Systems
• ENG 353 – Selecting, Implementing
• ENG 354 – Authorizing and Monitoring System Controls
• ICS 210 – ICS/SCADA Security Essentials
• TST 101 – Fundamentals of Security Testing
• TST 202 – Penetration Testing Fundamentals
• TST 205 – Performing Vulnerability Scans