10/08/2025
CyberSecurity Certification Training.
This comprehensive (beginner to professional) Cybersecurity training program equips you with the in-depth knowledge and practical skills to:
- Master securing networks, applications, and cloud environments.
- Detect, respond to, and recover from sophisticated cyberattacks.
- Protect critical infrastructure and the ever-growing expanse of connected devices.
- Prepare for and successfully complete the certification exam.
This program immerses you in a hands-on, real-world learning environment through extensive projects and simulations.
Our curriculum is directly aligned with industry-recognized certifications and is designed to equip you with the practical skills needed to excel in today's cybersecurity landscape. You'll learn how to apply what you’ve learnt to real-world scenarios, preparing you to confidently step into various cybersecurity roles.
We offer Remote Job Placement upon completion of the training
Location: Port Harcourt and Uyo
Training Fee: N300,00
Duration: 4 Months
Registration Ongoing.
Visit the Hub to enroll:
Wedigraf Tech Hub
Port Harcourt:
2 Chief Ejims Street, off Old Aba Road, Rumuomasi, Port Harcourt, Rivers State.
Uyo:
69 Abak Road, by Udo Abasi Street, Uyo, Akwa Ibom State.
*CYBERSECURITY TRAINING COURSE OUTLINE*
*Module 1: Security Principles*
Dive into core concepts, risk management, and compliance:
1.1 Cybersecurity Concepts
1.1.1: Core Concepts and Principles
- Confidentiality (Data Classification, Access Control, Encryption, Need-to-Know)
- Integrity (Data Validation, Hashing and Checksums, Digital Signatures, Version Control. Audit Trail)
- Availability (Redundancy, DRP, BCP, Load Balancing, DDoS Mitigation)
- Authentication (e.g., methods of authentication, multi-factor authentication (MFA, Single Sign-on (SSO) and Strong Password Policies)
- Non-repudiation (Digital Signatures, Audit Trails and Logging, Timestamping)
- Privacy (Data Minimization, Purpose Limitation, Consent Management, Data Subject Rights, Compliance with Regulations, Privacy by Design)
- Accountability (Audit Trails and Logging, Unique Identifiers, Security Monitoring)
- Defense in Depth (Layered Security, Redundant Controls)
- Trust Models (Implicit Trust, Explicit (Zero) Trust
1.1.2: Types of cyber threats and attacks
1.1.3: Cybercrime and its impact
1.2.1: Risk Management and Assessment
- Understand the risk management process
- Risk management (e.g., risk priorities, risk tolerance)
- Identifying, evaluating, and prioritizing security risks
- Risk identification, assessment and treatment
1.2.2: Risk assessment methodologies
- Threat modeling and vulnerability analysis
1.3: Security Controls
- Technical controls
- Administrative controls
- Physical controls
1.4: Governance, Risk, and Compliance (GRC)
1.4.1: Understand governance processes
- Policies
- Procedures
- Standards
- Regulations and laws
1.4.2: Security and Privacy Governance, Risk Management and Compliance Program
- Scope of the System
- Selection and Approval of Framework, Security and Privacy Controls
- Implementation of Security and Privacy Controls
- Assessment/Audit of Security and Privacy Controls
- System Compliance
- Compliance Maintenance
- Frameworks and standards (e.g., ISO 27001, NIST Cybersecurity Framework)
- Compliance requirements (e.g., GDPR, CCPA, HIPAA)
- Security policies and procedures
*Module 2: Defensive Security*
Learn application, network, and cloud security best practices, including DevSecOps and blockchain security.
2.1: Application Security:
- Secure coding practices
- Vulnerability assessment and pe*******on testing
- Application hardening techniques
2.2: Network Security:
- Network architecture and protocols
- Network Attacks and Defense Strategies
- Administrative Network Security
- Technical Network Security
- Network Perimeter Security
- Endpoint Security - Windows Systems, Linux Systems, Mobile Devices, IoT Devices
- Administrative Application Security
- Data Security
- Enterprise Virtual Networks
- Enterprise Cloud Security
- Enterprise Wireless Security
- Network Traffic Monitoring
- Network Logs Monitoring and Analysis
- Firewalls, intrusion prevention systems (IPS), and intrusion detection systems (IDS)
- Virtual private networks (VPNs) and network segmentation
2.3: Cloud Security:
- Cloud security models (IaaS, PaaS, SaaS)
- Infrastructure as code (IaC) security
- Cloud data protection and encryption
2.4: DevSecOps:
- Integrating security into the software development lifecycle
- Security testing and automation
2.5: Blockchain Security:
- Understanding blockchain vulnerabilities
- Securing blockchain-based systems
2.6: Physical Security:
- Protecting physical assets, data centers, and personnel
- Access control and surveillance systems
Simulation Labs: Hands-on Experience
- Web Application Vulnerability Scanning (OWASP ZAP)
- Network Pe*******on Testing (Kali Linux, Metasploit)
- Cloud Security Architecture Design (AWS/Azure/GCP)
- DevSecOps Pipeline Implementation (Jenkins, Docker)
Module 3: Offensive Security
Master advanced pe*******on testing, malware analysis, and ethical hacking techniques.
3.1: Malware Analysis:
- Malware types and behavior
- Static and dynamic malware analysis
- Reverse engineering techniques
3.2: Pe*******on Testing:
- Pe*******on testing methodologies
- Report Writing for Pe*******on Testers
- Information Gathering
- Vulnerability Scanning
- Client-Side Attacks
- Locating Public Exploits
- Fixing Exploits
- Network, application, and wireless pe*******on testing
- Web application exploitation
- Advanced Evasion Techniques and Breaching Defenses
3.3: Ethical Hacking:
- Hacking tools and techniques
- Footprinting and Reconnaissance (whois, nslookup/dig, traceroute/pathping, theHarvester, Malego, dorks)
- Scanning Networks (Nmap, hping3, Masscan, OpenVAS, Nessus)
- Enumeration (NetBIOS, SNMP, LDAP, NFS, SMB, DNS, SMTP)
- Vulnerability Analysis (OpenVAS, Nikto, OWASP ZAP)
- System Hacking (Metasploit, Hydra, JohnTheReaper, Hashcat)
- Malware Threats (Cuckoo Sanbox, PEiD)
- Sniffing (Wireshark, tcpdump, ettercap)
- Social Engineering (SET, Phishing Frenzy)
- Denial-of-Service (DOS) and Distributed Denial-of-Service (DDOS) Attacks (Hping3, LOIC)
- Session Hijacking (ettercap, Burp Suite)
- Evading IDS, Firewalls, and Honeypots
- Hacking Web Servers
- Hacking Web Applications (Burp Suite, OWASP ZAP, SQLmap, XSSer, Web shells)
- Hacking Mobile Platforms (adb, Frida)
- Hacking Wireless Networks (Aircrack-ng suite, Kismet, Reaver)
- IoT and OT Hacking
- Cloud Computing
- Cryptography (OpenSSL)
Simulation Labs: Hands-on Experience:
- Malware Analysis Challenge (VirusTotal, IDA Pro)
- Pe*******on Testing Exercises (Vulnerable Machines, TryHackMe, Nmap, Shodan,
Nessus, OpenVAS)
*Module 4: Incident Response and Digital Forensics*
Learn how to Investigate cyber incidents, conduct digital forensics, and leverage SIEM technologies.
4.1: Incident Response:
- Incident response planning and procedures
- Incident detection, containment, eradication, recovery, reporting and lessons learned
- Digital forensics and incident investigation
- Computer Forensic Incidents
- Investigative Theory and Process
- Digital Acquisition and Analysis Tools
- Live Acquisitions
- Windows, Linux, and Max Forensics
- Examination, Digital Evidence and Laboratory Protocols
4.2: Security Information and Event Management (SIEM):
- SIEM technologies and deployment
- Log management and analysis
- Threat detection and correlation
Simulation Labs: Hands-on Experience:
- Incident Response Simulation (CyberRange)
- Digital Forensics Investigation (FTK Imager)
- SIEM Configuration and Alerting (Splunk, Elastic Stack)
Module 5: Data Protection and Recovery
Explore cryptography, identity & access management, and robust business continuity & disaster recovery strategies.
5.1: Cryptography:
- Encryption algorithms and key management
- Public-key infrastructure (PKI)
- Cryptographic protocols
5.2: Identity and Access Management (IAM):
- Authentication, authorization, and access control
- Identity management systems
- Single sign-on (SSO) and multi-factor authentication (MFA)
5.3: Business Continuity and Disaster Recovery (BCDR):
- Business impact analysis (BIA)
- Disaster recovery planning and testing
- Data backup and recovery strategies.
Simulation Labs: Hands-on Experience:
- Encryption and Key Management (OpenSSL)
- Identity and Access Management Design (Okta, Azure AD)
- Disaster Recovery Planning and Testing (DRaaS)
Module 6: Emerging Technologies and Advanced Topics
Delve into the security challenges and solutions for IoT, OT, cloud-native environments, and AI/ML in cybersecurity.
6.1: Operational Technology (OT) Security:
- Securing industrial control systems and critical infrastructure
- SCADA and ICS security
6.2: Internet of Things (IoT) Security:
- IoT device security and vulnerabilities
- IoT network security
6.3: Cloud Native Security:
- Securing cloud-native applications and infrastructure
- Container security
6.4: Artificial Intelligence (AI) and Machine Learning (ML) in Cybersecurity*:
- Leveraging AI/ML for threat detection and response
- Ethical considerations of AI in cybersecurity
Simulation Labs: Hands-on Experience:
- IoT Device Security Assessment (IoT Pentesting Framework)
- Cloud Native Application Security (Kubernetes Security)
- AI-Powered Threat Hunting (Threat Intelligence Platforms 1)
*******ontesting