RISE to protect systems and data.
Master security from foundations to expert-level defense
Protect systems, networks, and data from cyber threats. Master ethical hacking, penetration testing, and security architecture to defend against evolving threats.
RISE START: Foundation (3-6 months)
Build your cybersecurity fundamentals and earn your first security certification
Core Skills to Master
Recommended Courses
Implementation of Secure Solutions for CompTIA Security+ (SY0-701)
By Andru Estes
Exam objectives: SY0-701
Troubleshooting for CompTIA Linux+ (XK0-006)
By Andrew Mallett
Exam objectives: XK0-006
System Management for CompTIA Linux+ (XK0-006)
By Andrew Mallett
Exam objectives: XK0-006
Security for CompTIA Linux+ (XK0-006)
By Andrew Mallett
Exam objectives: XK0-006
Managing Security Using Microsoft Defender XDR
By
Exam objectives: Certification
Complete Ethical Hacking Bootcamp
By
Professional development course for cybersecurity
Certifications to Pursue
CompTIA Security+ (SY0-701)
The industry-standard baseline cybersecurity certification. Validates core security skills and is required by DoD 8570 for many government roles. Essential for launching your security career.
- Jason Dion's Security+ course (above)
- Professor Messer's free Security+ videos
- Jason Dion Practice Exams ($12 - ESSENTIAL)
- CompTIA Official Study Guide
CompTIA Network+ (N10-008)
Foundation networking knowledge for security professionals. Understanding networks is crucial for defending them.
View CertificationHands-On Projects
Build a Home Security Lab (VirtualBox/VMware)
Set up virtual machines for penetration testing: Kali Linux (attacker), Metasploitable 2 (target), Windows Server, and pfSense firewall. Practice attacks and defenses safely.
Network Scanning and Reconnaissance Project
Use Nmap to scan networks, identify open ports, enumerate services, detect OS fingerprints. Document findings and recommend security hardening steps.
Vulnerability Assessment with Nessus
Install Nessus vulnerability scanner, scan target systems, analyze vulnerabilities by severity, and create remediation plan with prioritized recommendations.
Password Security Analysis Project
Use John the Ripper and Hashcat to crack password hashes (from legal test files). Demonstrate importance of strong passwords, document findings, recommend password policies.
Recommended Learning Path (4-6 months)
Networking & Linux Fundamentals
- Learn TCP/IP, OSI model, common protocols
- Master Linux command line basics
- Understand DNS, DHCP, HTTP/HTTPS
- Set up your home security lab
Security Fundamentals & Tools
- Study Security+ domains (threats, vulnerabilities)
- Learn Nmap, Wireshark, Metasploit basics
- Practice with Kali Linux tools
- Complete vulnerability scanning projects
Cryptography & Security Architecture
- Master encryption concepts
- Learn security frameworks (NIST, ISO)
- Study incident response procedures
- Practice ethical hacking techniques
Certification & Job Search
- Complete Security+ practice exams
- Take Security+ certification exam
- Document all projects for portfolio
- Apply for SOC Analyst roles
- Start applying for entry-level security jobs
RISE GROW: Professional Development (1-3 years)
Master penetration testing, advanced security operations, and specialized security domains
Skills to Develop
Recommended Courses
AWS Certified Solutions Architect - Associate (SAA-C03): Exam Preparation
By Ryan Kroonenburg; Andru Estes
Exam objectives: SAA-C03 — Exam Preparation
AWS Certified Security - Specialty (SCS-C02): Threat Detection and Incident Response
By Chris Jackson
Exam objectives: SCS-C02 — Threat Detection and Incident Response
AWS Certified Security - Specialty (SCS-C02): Certification Essentials
By Chris Jackson
Exam objectives: SCS-C02 — Certification Essentials
Azure Security Engineer Associate (AZ-500): Secure Compute, Storage, and Database Services
By Bobby Wood
Exam objectives: AZ-500 — Secure Compute, Storage, and Database Services
Azure Security Engineer (AZ-500): Practice Exam
By Jake Spencer
Exam objectives: AZ-500 — Practice Exam
CompTIA CySA+ (CS0-003) Complete Course & Practice Exam
By
Professional development course for cybersecurity
Professional Certifications
CEH (Certified Ethical Hacker) v12
Industry-recognized ethical hacking certification. Validates penetration testing skills across 20 security domains. Opens doors to penetration tester and security consultant roles.
- EC-Council official training ($4,500) OR
- Udemy CEH courses ($15)
- Practice with HackTheBox and TryHackMe
- CEH practice exams (Boson, Whizlabs)
CompTIA CySA+ (Cybersecurity Analyst)
Advanced SOC analyst certification. Validates behavioral analytics, threat hunting, and incident response skills. Perfect for security operations center roles.
View CertificationCompTIA PenTest+ (PT0-002)
Hands-on penetration testing certification. Validates practical skills in planning, scoping, and executing pentests. Alternative to CEH at lower cost.
View CertificationAdvanced Projects
Complete Web Application Penetration Test
Perform full pentest on DVWA (Damn Vulnerable Web App) or OWASP Juice Shop. Exploit XSS, SQLi, CSRF, authentication bypass, and privilege escalation. Write professional pentest report.
Active Directory Attack and Defense Lab
Build AD lab with domain controllers, workstations, users. Practice Kerberoasting, Pass-the-Hash, Golden Ticket attacks. Implement defenses: hardening, GPO policies, logging.
Build a SIEM Lab with Detection Rules
Deploy Splunk or ELK stack, ingest logs from Windows/Linux, create correlation rules for common attacks (brute force, lateral movement), build SOC dashboard.
Network Penetration Test & Exploitation
Set up vulnerable network, perform full network pentest: reconnaissance, scanning, exploitation with Metasploit, post-exploitation, privilege escalation, document vulnerabilities and fixes.