I. Overview:

SecurityX is an advanced cybersecurity certification for security architects and senior security engineers. It proves you have the skills to design, build, and implement secure solutions across complex environments. You'll also show you can support a resilient enterprise while addressing governance, risk, and compliance needs.

II. Duration: 48 hours (6 days)

III. Objectives:

• Design, implement, and integrate secure solutions across complex environments to support a resilient enterprise in security architecture and engineering.
• Use automation, monitoring, detection, and incident response to proactively support ongoing security operations.
• Apply security practices to cloud, on-premises, and hybrid environments to ensure enterprise-wide protection.
• Utilize cryptographic technologies and techniques while evaluating the impact of emerging trends, such as artificial intelligence, on information security.
• Implement governance, compliance, risk management, and threat modeling strategies across the enterprise.
• Validate advanced, hands-on skills in security architecture and senior security engineering within live environments.

IV. Intended Audience:

• Security architect
• Systems requirements planner
• Security control assessor
• Research and development specialist, and more

V. Prerequisites:

• Recommended experience: minimum of 10 years of general hands-on IT experience, including 5 years of hands-on security, with Network+, Security+, CySA+, Cloud+, and PenTest+ or equivalent knowledge.

VI. Course outlines:

1. Governance, Risk, and Compliance

• Given a set of organizational security requirements, implement the appropriate governance components.
• Given a set of organizational security requirements, perform risk management activities.
• Explain how compliance affects information security strategies.
• Given a scenario, perform threat-modeling activities.
• Summarize the information security challenges associated with artificial intelligence (AI) adoption.

2. Security Architecture

• Given a scenario, analyze requirements to design resilient systems.
• Given a scenario, implement security in the early stages of the systems life cycle and throughout subsequent stages.
• Given a scenario, integrate appropriate controls in the design of a secure architecture.
• Given a scenario, apply security concepts to the design of access, authentication, and authorization systems.
• Given a scenario, securely implement cloud capabilities in an enterprise environment.
• Given a scenario, integrate Zero Trust concepts into system architecture design.

3. Security Engineering

• Given a scenario, troubleshoot common issues with identity and access management (IAM) components in an enterprise environment.
• Given a scenario, analyze requirements to enhance the security of endpoints and servers.
• Given a scenario, troubleshoot complex network infrastructure security issues.
• Given a scenario, implement hardware security technologies and techniques.
• Given a set of requirements, secure specialized and legacy systems against threats.
• Given a scenario, use automation to secure the enterprise.
• Explain the importance of advanced cryptographic concepts.
• Given a scenario, apply the appropriate cryptographic use case and/or technique.

4. Security Operations

• Given a scenario, analyze data to enable monitoring and response activities.
• Given a scenario, analyze vulnerabilities and attacks, and recommend solutions to reduce the attack surface.
• Given a scenario, apply threat-hunting and threat intelligence concepts.
• Given a scenario, analyze data and artifacts in support of incident response activities.