Application control Playbook for Teams
RCCE students will learn endpoint hardening, EDR deployment, privilege management, application control, and endpoint visibility strategies. RCCE students will learn to harden endpoints against compromise across Windows, Linux, and macOS platforms, deploy and manage endpoint detection tools, reduce attack surface through privilege management and application control, and maintain comprehensive visibility across diverse device fleets. This team-oriented course builds collaborative workflows and organizational playbooks for security operations. Starting from foundational concepts, RCCE students will learn to create and implement standardized procedures that enable consistent performance across team members and shifts. Students develop the documentation, communication, and coordination skills needed for effective team-based security operations.
- Endpoint Security Engineers and EDR Analysts
- Windows and macOS Administrators managing privileges
- Identity and Access Management Engineers
- IT Security Operations Leads reducing attack surface
- Professionals implementing Application control Playbook for Teams
- Execute hands-on tasks for application control
- Execute hands-on tasks for playbook for teams
- Execute hands-on tasks for learning objectives
- Execute hands-on tasks for endpoint hardening — covering Harden Windows, Linux, macOS endpoints, Deploy endpoint detection tools.
- Execute hands-on tasks for edr & visibility — covering Harden Windows, Linux, macOS endpoints.
- Execute hands-on tasks for privilege & app control — covering least-privilege models.
- Execute hands-on tasks for team playbooks — covering Build standardized team workflows.
- Execute hands-on tasks for what is application control?
- Execute hands-on tasks for business value — covering Default-deny execution policy.
- Execute hands-on tasks for why teams need playbooks
- Execute hands-on tasks for endpoint security landscape
- Execute hands-on tasks for key challenges — covering Diverse OS environments increase complexity.
| Module 01 | Application Control |
| Module 02 | Playbook for Teams |
| Module 03 | Learning Objectives |
| Module 04 | Endpoint Hardening |
| Module 05 | EDR & Visibility |
| Module 06 | Privilege & App Control |
| Module 07 | Team Playbooks |
| Module 08 | What Is Application Control? |
| Module 09 | Business Value |
| Module 10 | Why Teams Need Playbooks |
| Module 11 | Endpoint Security Landscape |
| Module 12 | Key Challenges |
| Module 13 | Team Roles & Responsibilities |
| Module 14 | Team Lead |
All hands-on labs run on Rocheston Rose X OS. Students practice application control playbook for teams by implementing the controls discussed in class, with a focus on real-world deployment, monitoring, and validation.
- Lab 1: Execute hands-on tasks for application control
- Lab 2: Execute hands-on tasks for playbook for teams
- Lab 3: Execute hands-on tasks for learning objectives
- Lab 4: Execute hands-on tasks for endpoint hardening
- Lab 5: Execute hands-on tasks for edr & visibility
Upon successful completion of this course, students will receive an official RCCE Course Completion Certificate for Application control Playbook for Teams, verifiable through the Rocheston certification portal.
- Full access to all course materials and slide decks
- Hands-on lab access on Rocheston Rose X OS environment
- Access to Rocheston CyberNotes
- Access to Rocheston Zelfire — EDR/XDR SIEM platform
- Access to Rocheston Raven — online cyber range exercise platform
- Access to Rocheston Vulnerability Vines AI