Four Pillars of Cyber Proficiency
Everything you learn in this course maps to one of four core professional competencies used by real security teams.
Identify vulnerabilities, threats, and attack methods. Evaluate the likelihood and impact of risks to organizational assets.
Implement detection methods, monitor systems, and analyze digital evidence and log files for indicators of compromise.
Implement protective and deterrent security controls, layering defenses to address vulnerabilities across every surface.
Work with human teams and leverage AI tools securely to accomplish complex tasks and establish shared security objectives.
The 5-Unit Journey: Defense in Depth
The five units mirror the real-world “defense in depth” architecture — moving from the outer human perimeter inward to the digital core.
The Human Element & Authentication
Social engineering (phishing, vishing, smishing, pretexting), AI-enhanced voice cloning, password spraying, and credential stuffing.
Moving beyond passwords: Multifactor Authentication (MFA) using knowledge, possession, biometric, and location factors.
Securing Physical Spaces
Piggybacking, tailgating, dumpster diving, and installing keyloggers directly into hardware ports to bypass technical controls.
Access control vestibules, turnstiles, disabled USB ports, uninterruptible power supplies (UPS), and strategic camera placement.
Securing Networks
Man-in-the-middle attacks, ARP poisoning, MAC spoofing, DDoS/Smurf attacks, and Evil Twin rogue access points.
Screened subnets (DMZs), VLANs, stateful firewalls with ACLs, and NIDS/NIPS with SIEM-based anomaly detection.
Securing Devices
Trojans, ransomware, rootkits, fileless malware, and cryptographic attacks using brute force, dictionary, and Rainbow Table methods.
Endpoint Detection and Response (EDR), acceptable use policies, host-based firewalls, and rigorous OS patching schedules.
Securing Applications & Data
SQL injection, Cross-Site Scripting (XSS), buffer overflows, and cryptographic failures that expose sensitive stored data.
Input sanitization, data validation, symmetric and asymmetric encryption, access controls based on data sensitivity classification.
The AP Exam
Criterion-referenced scoring designed with higher education faculty and industry experts for college credit and workforce credential eligibility.
Assessing conceptual knowledge of vulnerabilities, risk assessment, and cryptographic principles across all 5 units.
Hands-on analysis: parse simulated network logs, evaluate device configurations, analyze firewall Access Control Lists (ACLs).
A qualifying exam score unlocks an Employer-Endorsed Credential — accelerating internship, apprenticeship, and job applications.
Ready to Start?
Unit 1 is live now. Dive into social engineering, the psychology of attacks, and how professionals defend against them.
Start Unit 1 → View Full Course