Evolve Security Certified Professional
Become an Evolve Security Certified Professional through this 17-week part-time bootcamp and learn how to help companies secure their data, networks, and applications.
Remote portion (4-weeks) is live-instructor led and meets Monday-Wednesday starting at 6:00pm CT.
In-person portion (13-weeks) meets in Chicago at 1871, located in the Merchandise Mart Plaza, and meets Monday - Thursday from 6:00pm to 9:00pm CT, and every other Saturday from 10:00am to 3:00pm CT.
Summer 2017 Cohort begins May 29, 2017
Winter 2017 Cohort begins September 11, 2017
CURRICULUM AT A GLANCE
DETAILED MODULE OVERVIEW
Networking is the process of how connections are made and how computers / systems communicate with each other, which lays the foundation for cyber security. If you want to be 99% secure, just lock the door, unplug your Ethernet and turn off your Wifi. This module lays the foundation for computer networking and covers the basic network protocols that are used to run the Internet. Networking is the process of how connections are made and how computers / systems communicate with each other, which lays the foundation for cyber security. If you want to be 99% secure, just lock the door, unplug your Ethernet and turn off your Wifi. This module lays the foundation for computer networking and covers the basic network protocols that are used to run the Internet.
TOPICS: LAN / WAN, OSI Model, TCP / IP Model, Network Protocols, IP v4 & IP v6, TCP, UDP, ICMP, Ports and Services, Routing & Switching, NAT / PAT, DNS, Network segmentation, Subnetting, VLANS
TOOLS: Kali Linux, Wireshark, TCPDUMP, Netcat, Netstat, Nmap, Dig, Nslookup, Whois
This module focuses on how clients, systems, servers and databases all connect and communicate with one another. Students will work with Apache servers, Linux, SQL databases, virtual environments, Python, Git and AWS.
TOPICS: Client Server Model, App and Web Servers, Application Architecture, Databases (Relational / Non-relational), SQL basics RBAC (Role based access control), Command Line Basics, Programming w/ Python, Version Control Basics, Virtual Environments, Cloud Security (IaaS / PaaS / Saa / Shared Responsibility / SLAs)
TOOLS: NGNIXii, Apache, MySQL, PostgreSQL, Python, Git, PIP, VirtualENV, Django, AWS
This module introduces core principles that are essential to forming a security mindset, which include the CIA Triad (Confidentiality / Integrity / Availability); Defense-in-Depth; Authentication, Authorization and Accounting; and Open Web Application Security Project (OWASP). Also, security is a mile wide and a mile deep and this module provides an overview of the various different domains within security, which include Application Security; Network Security; Hardware Security; Physical Security; Mobile Security; Operational Security (SecOps/OpsSec); Incident Response; Identity and Access Management; Governance, Risk & Compliance (GRC); and Disaster Recovery / Business Continuity.
TOPICS: Key Elements, CIA Triad, Defense-In-Depth, Domain Landscape, AAA Services, OWASP
TOOLS: NIST 800, OWASP
An enterprise cannot properly defend their information unless they understand who they are defending against. This module discusses the current threat landscape and dives into where threats are coming from and what is motivating the threat actors.
TOPICS: Threat Sources & Events; Adversarial (Fraud / Theft , Insider Threat, Malicious Hackers, Malicious Code, Malware, Ransomware, Espionage); Non-adversarial (Errors and Omissions, Physical Infrastructure, Privacy and Data Sharing); Threat Motivations (Monetary, Hacktivism, IP Theft, Espionage)
TOOLS: Verizon Data Breach Reports
This module focuses on how to understand, implement and manage a security program within an enterprise. Security professionals must have strong knowledge of how a company operates in order to implement effective security policies and procedure. You must understand who the company’s employees, customers, suppliers and competitors are and how digital information is created, accessed, and shared. Students will learn about the various compliance standards and security frameworks that are most commonly used in the industry.
TOPICS: Governance, Risk (Rating methodologies, Strategies: Accept / Transfer / Mitigate), Compliance (Legal / Regulatory / HIPAA / PCI - DSS), Frameworks (NIST Cyber Security Framework / ISO 27001:02), Administration (Policies / Procedures / Standards / Guidelines), Privacy, Data Classification & Handling (Identification / Ownership / Data at rest / Data at motion / Scoping)
Physical security has been important for thousands of years and will most likely be just as important for thousands of more years. It doesn’t matter how complex your encryption algorithm is or how robust your firewall is if you leave the door to the server room unlocked. Also, People will always be involved in the process of accessing information and thus will continue to be vulnerable to attacks. People may not be fooled by the Tanzanian prince needing a US bank account to transfer his $20 million, but it will still be a while before they can resist the temptation to click on the link to a funny cat video. In this module, students will learn to pick locks, will socially engineer themselves through a help desk and will run actual email phishing campaigns.
TOPICS: Physical Access Controls, Deterrents and Monitoring, Security Awareness, Social Engineering (Email / Phishing / In-Person / Telephony
TOOLS: Lock picking
At the epicenter of defending against cyber-crime is the ability to initially prevent and then detect cyber-attacks as they occur in real time. This module teaches students on network architecture / design, firewall configuration, security monitoring, intrusion detection and prevention, and crisis management. It includes topics such as access control, signature configuration, log management, traffic analysis, data loss prevention, and troubleshooting components.
TOPICS: Firewalls (Access Control Lists / Filters / Rules / White List / Black List), Proxies, Remote Access, VPN, Network Access Control, Architecture / Design, Detect / Defend, Traffic Analysis, Logging / Log Management, Security Information Event Management (SIEM), Intrusion Detection System (IDS), Intrusion Prevention System (IPS), Data Loss Prevention (DLP)
TOOLS: Splunk, IPtables, Elastic Stack*, Palo Alto*, OpenVPN*, Docker*, LogRhythm*, QRadar*
It is much more difficult and expensive to address security after a system has been deployed and is being implemented or is in production. Security should be considered from the beginning of a systems development lifecycle in order to maximize security and minimize costs. In this module, students will learn best practices on hardening network devices (switches, routers, firewalls, IDPS), operating systems (Linux, Windows), software (web servers, application servers, database servers), and application code (APIs, portals, OWASP).
TOPICS: Secure Design Principals, Built-In vs. Bolt-On, Hardening (Operating Systems: Linux & Windows, Servers, Web Applications, Mobile), OWASP Top 10, Patching, Secure Software Development Lifecycle (SSDLC)
TOOLS: Snort, File ACLs, WebGoat, CentOS, Debian / Ubuntu
A cyber-criminal cannot do much damage to an enterprise if they are unable to read the data they steal. This module first focuses on the core concepts of encryption (Boolean Logic, Modulus Arithmetic, hashing) and how it is used within secure protocols (SSL, TLS, SSH). Then focus shifts on how to implement and manage encryption policies within an enterprise (signatures, key management, PKI) as well as understanding the vulnerabilities and misconfigurations that most commonly go wrong during implementation. Finally, we have the students put up their black hoody and hunker down in their basement where they get to use brute force, rainbow tables and various other hacker tools to crack passwords from hashed data.
TOPICS: Boolean Logic, Modulus Arithmetic, Symmetric / Asymmetric, Hashing, TLS / SSL, Disk encryption, Key Derivation Functions, Digital Signatures, Key Management: Public Key Infrastructure, Password Cracking: Rainbow Tables
TOOLS: OpenSSL, Hashcat, MD5 / SHA, VeraCrypt, Bcrypt, Hydra
How do we know if all the policies, procedures, firewalls, ACLs, or intrusion detection and prevention systems are working unless we test them? This module focuses on how to review security programs and perform various security vulnerability assessments throughout an enterprise. This is when students get to embody the mindset up a hacker and perform penetration tests where they mimic real-world attacks in an attempt to identify ways to circumvent the security features of an application, system or network. A successful pen tester has in-depth knowledge of how networks, systems, and applications are defended so this is where students get to really test everything they have learned to date. This module ends with the cohort splitting into teams for a red team / blue team exercise that has been known to get obnoxiously competitive.
TOPICS: Assessment Approach, Testing Viewpoints (Internal / External, Overt / Covert, White box / Gray Box / Black Box), Mitigation and Remediation, Vulnerability Scanning, Penetration Testing, Bug Bounty, DevSecOps, Red Team / Blue Team
TOOLS: Carbon Black, Metasploit, Nikto, Nessus, Burp Suite, Veracode, Shodan, Discover scripts, evident.io*, Terraform*, Qualys*
The new mindset in security is that there are two types of companies: companies that know that they have been breached and companies that don’t know that they have been breached. One-third of U.S. business were breached last year and nearly 75% were unaware of how the incident occurred. In this module, students learn that it is vital that companies properly respond after a breach and have a process to perform forensics to best learn how the breach occurred and understand how it affects the company.
TOPICS: CSIRT, NIST: IR Methodology (Preparation / Detection & Analysis / Containment, Eradication & Recovery / Post-Incident Activity), NIST: Forensics Process (Data Collection / Examination / Analysis / Reporting), Threat Intelligence (Cyber Kill Chain / Diamond Model)
TOOLS: FireEye Redline (Mandiant), Volatility
Companies hire people – not pieces of paper – so even though you have just completed this great training, you only have about an hour to show the employer that you are the one for the job. In this module, students will work through optimizing their resume, LinkedIn profile and nailing the interview. Throughout the program, we hold various meetup events where students have the opportunity to meet industry professionals and expand their network. We also have a robust pool of adjunct instructors, some of whom are also hiring partners, who come in throughout the cohort and dive into their respective area of expertise. We know what it takes to get a job in cyber security and continuously support our students until they are placed.
TOPICS: Networking, LinkedIn Profile, Resume Prep, Interview Prep, Continuing Education, CompTIA Security+