ＨｉｄｅＺｅｒｏＯｎｅ

SEC556 focuses on the unique security challenges posed by the growing number of Internet of Things (IoT) devices. This course teaches participants how to identify, exploit, and secure vulnerabilities in IoT devices and their supporting infrastructures. Topics include network attacks, device manipulation, weak authentication, insecure communications, and firmware analysis. Through practical labs, students will perform hands-on penetration testing on a range of IoT devices, from consumer gadgets to industrial systems. SEC556 equips professionals with the skills needed to understand IoT-specific attack vectors, develop mitigation strategies, and improve the overall security of connected ecosystems in both personal and enterprise environments.

SEC599 focuses on the integration of offensive and defensive strategies in purple team exercises to thwart advanced adversaries. This course explores how to use the kill chain model to identify and disrupt adversary tactics at every stage of an attack, from initial compromise to exfiltration. Participants will learn to emulate sophisticated threat actor techniques while developing and implementing effective defenses, detection systems, and countermeasures. Through hands-on exercises and attack simulations, students will gain expertise in strengthening their security posture by continuously improving their response to advanced persistent threats (APTs) and real-world attack scenarios.

SEC565 focuses on the strategies, tactics, and techniques used by red teams to emulate advanced adversaries and conduct realistic penetration testing. This course provides in-depth training on planning, executing, and reporting red team operations, with an emphasis on simulating real-world cyberattacks across various attack vectors, such as phishing, social engineering, lateral movement, and privilege escalation. Participants will learn how to apply the MITRE ATT&CK framework for adversary emulation and how to tailor their operations to test an organization’s defenses. Through hands-on labs and real-world scenarios, SEC565 equips professionals with the skills to conduct thorough red team assessments, identify vulnerabilities, and improve an organization’s overall security resilience.

SEC555 is a hands-on course that teaches security professionals how to effectively leverage Security Information and Event Management (SIEM) platforms for detecting, analyzing, and responding to cyber threats. The course focuses on configuring, tuning, and optimizing SIEM solutions to gather actionable intelligence from logs, events, and network data. Participants will explore advanced analytics techniques, threat hunting methodologies, and real-world scenarios to identify malicious activity and improve incident response. Through practical exercises and case studies, SEC555 equips attendees with the skills to transform their SIEM into a powerful tool for proactive defense and tactical decision-making in dynamic security environments.

SEC549 focuses on designing and implementing robust cloud security architectures tailored to enterprise environments. This course provides a deep dive into securing multi-cloud and hybrid cloud infrastructures, addressing challenges such as identity and access management (IAM), secure workload deployment, data protection, and compliance. Participants will learn to build scalable, defensible cloud architectures using industry best practices and native security tools across platforms like AWS, Azure, and Google Cloud. Through hands-on labs and case studies, SEC549 equips security professionals with the knowledge and skills to develop resilient cloud security strategies that align with business goals and withstand evolving threats.