Certified Cyber Security Specialist|Online

Course Methodology

The course will include practical sessions, videos as well as live examples [e.g., Virus] and demonstrations of white and black hat hacking tools. All participants will also be provided with the latest research papers and articles.

Course Objectives

By the end of the course, participants will be able to:

Apply information security standards to their organization and its critical assets
Identify the threats presented by viruses, malware, active code, and Active Persistent Threats (APT) and consider the diﬀerent mitigating options
To build and operational SOC
Formulate and manage eﬀective cyber security teams, and apply the Computer Security Incident Response Team (CSIRT) framework, tools and capabilities to deliver cost eﬀective and robust solutions to protect the organization
Use Neuro Linguistic Programing (NLP) to deliver messages that will change the way employees work and think about security
Examine the area of wireless security protocols, their security attributes, and their potential insecurities within the organization, and in public spaces
Illustrate how penetration testing and ethical hacking enhance organizational security
Evaluate and apply two of the most important aspects in the modern day of cyber-adversity: Open Source Intelligence (OSINT) and cyber threat intelligence
To develop real hands-on skill to conduct and investigation
To learn how to discover technical security vulnerabilities on any site
To learn about the Third Party Risk, and to understand the mitigations which may be applied

Target Audience

IT professionals, security professionals, auditors, site administrators, general management and anyone tasked with managing and protecting the integrity of the network infrastructure. This also includes anyone already familiar and involved with IT/cyber/digital security and seeking to build on their fundamental principles of security.

Target Competencies

Information security management
Vulnerability assessment and management
Applying cyber security solutions
Developing IT policies and procedures
Cyber forensics
Ethical hacking and Black Hat hacking

Adapting to evolving standards
- Information security standards (e.g. PCI-DSS/ISO27001)
- Documented tools:
  - ISO/IEC 27001
  - PAS 555
  - Control Objectives for Information and Related Technology (COBIT)
- Future standards
  - ISO/IEC 2018
  - EU privacy regulations
  - Local and international government stipulations implicating access to private data
Principles of IT security
- Enterprise security
  - External defenses
  - Web filtering
  - Intruder Prevention Systems (IPS)
  - Intruder Detection Systems (IDS)
  - Firewalls
- Secure code
- Software Development Lifecycles (SDL)
- Potential insecurities within developed applications
- WiFi security protocols and attributes
- Voice over IP (VoIP) security
- Governance Risk and Compliance (GRC)
- Security Incident Event Management (SEIM) applications
- Cloud security
- Third party security and compliance
Adopting cyber security measures
- Employee perception on security through Neuro Linguistic Programing (NLP)
- Security education and awareness: techniques, systems, and methodologies
- Penetration testing
- Ethical hacking
- Options to mitigate viruses, malware, active code threats and Active Persistent Threats (APT)
- The Computer Incident Response Team (CSIRT) frameworks, tools and capabilities
- Incident first response: proven methodologies, tools, and systems
- The science of applying robust digital forensics: applicable law, capabilities, and methodologies
- Supervisory Controls and Data Acquisition (SCADA); security requirements, processes and methodologies
- Abuse images: complying with local and international law
Building cyber security teams
- Creation and management of a Secure Operations Center (SOC)
- Development of the Corporate Security Organization Framework
- Formulation and deployment of a Computer Security Incident Response Team (CSIRT)
- Bespoke Security Incident and Event System (SIEM) for the operational deployment
- Risks associated with I/O Security (e.g. USBs, CDs, other forms of media)
- Risks of Active Code Injection, and mitigation techniques
Advanced cyber risks and tools
- Cyber crime and the darknet/darkweb: the world of the hackers/hacktivists
- The underground of cyber criminality
- Social engineering as a tool to test operational resilience
- Open Source Intelligence (OSINT)
- Cyber threat intelligence
- Open source and commercial security tools
- The operational use of encryption
- Virtual private networks
Steganography - Techniques used to hide hacking tools and malware on networks
- Command line and tools used to identify and extract dangerous files and contain malware and hacking applications
- The 1-10-60 Rule to identify and contain dangerous hidden applications
- Alternate Data Streams (ADS) and the threats they can pose under an NTFS environment
- Leveraging ADS to hide undetectable malware within an operational network

Meirc Professional Certificate (MPC)

MPC certified courses by Meirc Training & Consulting are designed for those willing to challenge themselves and go the extra distance. Participants who fully attend an MPC course and successfully complete the test on the last day, will receive a Meirc Professional Certificate (MPC), in addition to the one they receive for full attendance. MPC certificates are regionally recognized and can be quite valuable when applying for more senior roles within the organization or outside.

List of Certified Courses

2023 Schedule & Fees

Fees

Per participant

USD 2950

Fees + VAT as applicable

(including coffee breaks and a buffet lunch daily)

Discount Plans & Cancellations Policy

Location & Date

23 - 27 Apr, 2023

English

Virtual Learning

13 - 17 Aug, 2023

English

Virtual Learning

10 - 14 Dec, 2023

English

Virtual Learning

Meirc reserves the right to alter dates, content, venue, trainer, and to offer courses in an integrated virtual learning (IVL) format whereby face to face classroom participants and virtual learners participate simultaneously in the same course in an interactive learning experience.

Tax Registration Number: 100239834300003

This course is also offered in face-to-face courses, click on the course below.

Certified Cyber Security Specialist

23 - 27 Apr, 2023

English

Dubai

Certified Cyber Security Specialist

13 - 17 Aug, 2023

English

Dubai

Certified Cyber Security Specialist

10 - 14 Dec, 2023

English

Dubai

Overview

Course Methodology

Course Objectives

By the end of the course, participants will be able to:

Apply information security standards to their organization and its critical assets
Identify the threats presented by viruses, malware, active code, and Active Persistent Threats (APT) and consider the diﬀerent mitigating options
To build and operational SOC
Formulate and manage eﬀective cyber security teams, and apply the Computer Security Incident Response Team (CSIRT) framework, tools and capabilities to deliver cost eﬀective and robust solutions to protect the organization
Use Neuro Linguistic Programing (NLP) to deliver messages that will change the way employees work and think about security
Examine the area of wireless security protocols, their security attributes, and their potential insecurities within the organization, and in public spaces
Illustrate how penetration testing and ethical hacking enhance organizational security
Evaluate and apply two of the most important aspects in the modern day of cyber-adversity: Open Source Intelligence (OSINT) and cyber threat intelligence
To develop real hands-on skill to conduct and investigation
To learn how to discover technical security vulnerabilities on any site
To learn about the Third Party Risk, and to understand the mitigations which may be applied

Target Audience

Target Competencies

Information security management
Vulnerability assessment and management
Applying cyber security solutions
Developing IT policies and procedures
Cyber forensics
Ethical hacking and Black Hat hacking

Course Outline

Adapting to evolving standards
- Information security standards (e.g. PCI-DSS/ISO27001)
- Documented tools:
  - ISO/IEC 27001
  - PAS 555
  - Control Objectives for Information and Related Technology (COBIT)
- Future standards
  - ISO/IEC 2018
  - EU privacy regulations
  - Local and international government stipulations implicating access to private data
Principles of IT security
- Enterprise security
  - External defenses
  - Web filtering
  - Intruder Prevention Systems (IPS)
  - Intruder Detection Systems (IDS)
  - Firewalls
- Secure code
- Software Development Lifecycles (SDL)
- Potential insecurities within developed applications
- WiFi security protocols and attributes
- Voice over IP (VoIP) security
- Governance Risk and Compliance (GRC)
- Security Incident Event Management (SEIM) applications
- Cloud security
- Third party security and compliance
Adopting cyber security measures
- Employee perception on security through Neuro Linguistic Programing (NLP)
- Security education and awareness: techniques, systems, and methodologies
- Penetration testing
- Ethical hacking
- Options to mitigate viruses, malware, active code threats and Active Persistent Threats (APT)
- The Computer Incident Response Team (CSIRT) frameworks, tools and capabilities
- Incident first response: proven methodologies, tools, and systems
- The science of applying robust digital forensics: applicable law, capabilities, and methodologies
- Supervisory Controls and Data Acquisition (SCADA); security requirements, processes and methodologies
- Abuse images: complying with local and international law
Building cyber security teams
- Creation and management of a Secure Operations Center (SOC)
- Development of the Corporate Security Organization Framework
- Formulation and deployment of a Computer Security Incident Response Team (CSIRT)
- Bespoke Security Incident and Event System (SIEM) for the operational deployment
- Risks associated with I/O Security (e.g. USBs, CDs, other forms of media)
- Risks of Active Code Injection, and mitigation techniques
Advanced cyber risks and tools
- Cyber crime and the darknet/darkweb: the world of the hackers/hacktivists
- The underground of cyber criminality
- Social engineering as a tool to test operational resilience
- Open Source Intelligence (OSINT)
- Cyber threat intelligence
- Open source and commercial security tools
- The operational use of encryption
- Virtual private networks
Steganography - Techniques used to hide hacking tools and malware on networks
- Command line and tools used to identify and extract dangerous files and contain malware and hacking applications
- The 1-10-60 Rule to identify and contain dangerous hidden applications
- Alternate Data Streams (ADS) and the threats they can pose under an NTFS environment
- Leveraging ADS to hide undetectable malware within an operational network