University at Buffalo Cybersecurity
Bootcamp Non-Credit Professional Programs
l In-Depth Training | Virtual Classes

Introductory Course (4 Weeks)

The Introductory Course allows you to take the Cybersecurity Bootcamp for a test drive and get a feel for the remote learning environment.

The course covers topics such as fundamentals of information security and risk management, an introduction to networking and network security fundamentals, the Linux and Microsoft platforms and related security, and the concept and role of offensive security.

Following the Introductory Course, learners assess their understanding with a summary exam before proceeding to the extended course.

Fundamentals Phase (16 Weeks)

During the Fundamentals Phase, you will embark on an in-depth exploration of the fundamental principles of cybersecurity. This immersive journey will encompass various crucial concepts essential for securing and defending as a cybersecurity professional. Topics covered include the exploration of networks and their functionalities, common operating systems, the intricate mechanisms of device communication over networks, and the storage and utilization of data in cloud environments.

By successfully completing this phase, you will acquire a solid foundation in essential cybersecurity concepts, empowering you to navigate the field with confidence.

Computer Networking Fundamentals

This course presents a comprehensive introduction to computer networking, offering learners a holistic understanding of configuring and managing network devices to achieve optimal performance and security. Through practical exercises, participants will enhance their skills in device configuration and troubleshooting while gaining insights into network architectures, protocols, and security measures. They will engage in hands-on activities that promote critical thinking and problem-solving, enabling them to tackle common networking challenges effectively.

Throughout the course, learners will:

• Acquire knowledge on how various entities connect and interact within digital landscapes.
• Develop an understanding of different network types and their profound impact on our interconnected world.
• Leverage the potential of configuration settings documentation for enhanced network management.
• Explore the role of audits in ensuring both performance and security of networks.
• Recognize the critical role of system and communications protection in safeguarding information.
• Learn strategies for updating and adapting policies to keep pace with the ever-evolving network landscape.

Microsoft Security Systems Administration

This course provides hands-on training that focuses on securing Microsoft Windows environments, equipping learners with practical knowledge and skills to implement essential security features and tools, such as Microsoft Defender, BitLocker, and Windows Firewall. Participants will also gain expertise in configuring and managing networks using system administration tools to ensure security and stability. By the end of the course, learners will have a solid grasp of Microsoft's infrastructure and will be capable of implementing and maintaining secure Windows environments across various professional roles.

Throughout the course, learners will:

• Develop a comprehensive understanding of Microsoft's infrastructure and its core components.
• Learn effective strategies and techniques to protect Microsoft's infrastructure from potential threats.
• Acquire skills to manage different types of accounts based on business function requirements.
• Explore methods for maintaining a secure and safe network environment.
• Discover how automation and scripting can enhance both security and efficiency in cybersecurity roles.
• Understand the role of Active Directory in managing permissions and controlling access to network resources.
• Learn how to enhance system security and operational efficiencies using PowerShell.

Securing Your Network

In this course, you will build upon your existing knowledge of networks to deepen your understanding of this domain. By exploring networks, you will become acquainted with the various components of wired and wireless networks, including their security constraints and vulnerabilities. You will then proceed to develop access controls, ensuring a comprehensive approach to network security that encompasses the protection of people, data, and devices. Additionally, you will examine the safe construction and securing of networks, with discussions on cryptography and privacy considerations.

Throughout the course, learners will:

• Develop a thorough understanding of network security measures and the necessary strategies to ensure network safety.
• Master network monitoring techniques to detect and respond to potential security threats.
• Gain basic proficiency in effectively managing accounts within a system for enhanced network security.
• Recognize how security attributes can strengthen network defenses.
• Familiarize themselves with a variety of common tools and technologies that support network safety.
• Acquire the skills needed to build a secure network architecture.
• Learn the fundamentals of MHNs (Multi-Homed Network) and how to set them up effectively.
• Understand the relationship between Telnet and POP3 machines in the context of network security.

Integrating Your Infrastructure Security

In this course, learners will acquire the essential skills to effectively manage Linux operating systems, utilize basic Python programming, explore cloud computing, and enhance system security against various threats and vulnerabilities. They will develop the knowledge to monitor, scan, and analyze threats and vulnerabilities specifically in Linux and cloud-based environments, while also gaining familiarity with remediation techniques. Additionally, learners will delve into the understanding of how DevSecOps impacts the cybersecurity landscape.

Throughout the course, learners will:

• Obtain proficiency in managing Linux operating systems and implementing security measures to protect them.
• Learn the basics of Python programming, which can be applied to cybersecurity tasks.
• Develop a foundational understanding of cloud computing environments and gain hands-on experience in creating an instance using Amazon Web Services (AWS).
• Understand the process of remediating security issues and effectively sharing details to protect other systems.
• Acquire the skills to automate various cybersecurity tasks for efficient management and protection of systems.
• Explore the design principles of scalable cloud solutions and gain insights into integrating different environments.
• Become familiar with the concept of DevSecOps and its significance in the cybersecurity field.

Infrastructure Phase (4 Weeks)

The Infrastructure Phase of the course provides learners with the essential knowledge and practical experience to establish and maintain secure infrastructures and technologies.

Upon completion of this phase, learners will possess a comprehensive understanding of critical security measures, endpoint security, and other vital concepts crucial for effectively safeguarding organizations.

Designing Your Cybersecurity Infrastructure

This course provides an in-depth exploration of crucial elements involved in securing endpoint devices, implementing effective data loss prevention techniques, and employing advanced tools and strategies to safeguard an organization's digital assets. By the conclusion of the course, participants will possess a comprehensive understanding of endpoint device protection, data loss prevention, and the security considerations surrounding industrial systems and IoT devices.

Throughout the course, learners will:

• Thoroughly examine endpoint devices to gain the necessary knowledge for evaluating, identifying threats, and implementing protective measures.
• Acquire skills in documenting and tracking configurations and selecting appropriate tools for endpoint device security.
• Understand the establishment of rules and restrictions that effectively safeguard endpoint devices from potential harm.
• Discover methods for working with external information systems while maintaining endpoint device security.
• Develop proficiency in implementing data loss prevention techniques.
• Familiarize oneself with the threats and security measures associated with Industrial Control Systems (ICS) and Industrial Internet of Things (IIOT).

Advanced Phase (12 Weeks)

The Advanced Phase courses go beyond theoretical knowledge of cybersecurity technologies and focus on developing skills to effectively respond to attacks, proactively identify vulnerabilities through ethical hacking, and enhance system protection. Participants will gain an understanding of the motivations and social engineering techniques employed by malicious actors. They will also learn about different types of attacks, the attack kill chain, implementing attacks, responding to ongoing attacks, and implementing mitigation strategies.

Upon successfully completing this phase, participants will receive their Cybersecurity Bootcamp certificate of completion, acknowledging their proficiency in advanced cybersecurity concepts and skills.

Social Engineering and Ethical Hacking

In the Social Engineering and Ethical Hacking course, participants will delve into the inner workings of hackers' minds and explore the principles of game theory as they relate to cybersecurity defense and solutions. By the end of the course, learners will possess a comprehensive understanding of social engineering techniques and ethical hacking principles, enabling them to strengthen cybersecurity defenses and mitigate potential threats.

Throughout the course, learners will:

• Gain valuable insights into the motivations and actions of potential attackers.
• Develop an understanding of leveraging a malicious hacker's mindset to enhance system protection.
• Discover the proactive role of ethical hacking in supporting applications, systems, and organizational infrastructure. Explore reconnaissance, penetration testing, and defense system bypassing as strategies to maintain system security.
• Learn to identify vulnerabilities in web applications and cloud-based systems.
• Acquire the skills to effectively report risks and provide recommendations for defense.
• Understand the application of social engineering techniques in deceiving individuals.

Digital Forensics and Incident Response

The Digital Forensics & Incident Response course provides learners with indispensable tools to efficiently respond to attacks, conduct thorough investigations, collect evidence, and generate comprehensive reports. By the conclusion of the course, participants will possess the necessary knowledge to effectively handle incidents, carry out investigations, and communicate their findings. These acquired skills will enable students to identify, analyze, and strategize against security incidents, thereby mitigating the risk of future breaches.

Throughout the course, learners will:

• Gain a solid foundation in offensive security fundamentals.
• Develop an understanding of the fundamental principles of digital forensics. Explore strategies for file and stolen data recovery.
• Learn effective techniques for handling various types of attacks targeted at organizations.
• Gain insight into the strategies employed by attackers to gain access to critical systems and data.
• Explore the essentials of malware analysis to enhance threat detection and mitigation.

Threat Hunting and Intelligence

The Threat Hunting and Intelligence course empowers learners with the essential knowledge required to identify and mitigate vulnerabilities present in an organization's infrastructure. By the conclusion of the course, participants will possess the expertise to effectively recognize vulnerabilities, respond to threats, and establish robust plans to safeguard the organization's infrastructure.

Throughout the course, learners will:

• Develop an understanding of the various threats and vulnerabilities that can arise within an organization's network infrastructure, encompassing hardware devices, software applications, and network services.
• Enhance the ability to proactively identify and respond to threats, taking a proactive approach to threat hunting.
• Acquire the skills necessary to develop comprehensive plans and procedures to handle security incidents, ensuring a swift and coordinated response.
• Cultivate the ability to evaluate sources of information and select appropriate tools to fortify defenses and enhance threat intelligence capabilities.

Elective CompTIA® Security+ Certification Exam Prep Course (8 weeks)

The Cybersecurity Bootcamp incorporates an optional CompTIA® Security+ Exam Prep Course*, specifically designed to equip students with the necessary skills and knowledge to obtain this esteemed industry certification. Additionally, the bootcamp provides a voucher for the CompTIA® Security+ certification exam.

Throughout the course, learners will:

• Establish a solid foundation of core knowledge essential for various cybersecurity roles.
• Emphasize hands-on practical skills, setting the CompTIA® Security+ certification apart as the sole foundational cybersecurity certification with this focus.
• Attain a globally recognized certification that validates the fundamental knowledge required in the cybersecurity field, opening doors to intermediate-level cybersecurity positions.