In learning secure network architecture, you will be attacking and then defending an increasingly complex network each day in the class. On the first day you'll start with both attacking and defending an environment with basic firewalling, and simple network segmentation. On the second day you'll add VLANs, and network based IDS. On the third and fourth days you'll add content filtering web proxies, reverse proxies, host_based IDS, WAFs, NAC, and a SIEM solution. Finally, on the fifth day will be an attack and defense based capture the flag event that incorporates all of the security solutions in place with multiple projectors in the room so each security system will be projected on the wall like a SOC environment. This class contains 60% attacking and 40% defending.
The materials within this course focus on the Knowledge Skills and Abilities (KSAs) identified within the Specialty Areas listed below. Click to view Specialty Area details within the interactive National Cybersecurity Workforce Framework.
If you would like to provide feedback for this course, please e-mail the NICCS SO at NICCS@hq.dhs.gov.