CNAPP Foundations
RCCE students will learn how cloud-native application protection platforms combine workload visibility, posture findings, identity risk, container security, and runtime insight into a unified cloud defense model. RCCE students will learn to interpret CNAPP data, understand where different cloud security signals overlap, prioritize cloud-native risk, and design operational workflows that reduce noise while improving defensive coverage. The course covers practical scenarios ranging from posture review to workload analysis, prioritization, and remediation. RCCE students will learn to analyze complex systems and think like an attacker to better defend the organization. This comprehensive course delivers practical knowledge applicable to real-world cybersecurity operations. Starting from foundational concepts, RCCE students will learn through a combination of concept explanation, practical demonstration, and hands-on exercises.
- Cloud Security Architects and Engineers
- DevSecOps and Platform Engineers
- Identity and Access Management Specialists
- Security Analysts securing cloud workloads
- Professionals implementing CNAPP Foundations
- Explain CNAPP Foundations fundamentals
- Execute hands-on tasks for cloud-native application protection platforms · unified cloud defense
- Explain Course Overview and Learning Objectives fundamentals — covering CNAPP Concepts, Operational Workflows.
- Execute hands-on tasks for map defenses to attacker ttps
- Execute hands-on tasks for cloud-native application protection platform — covering Cloud sprawl creates visibility gaps.
- Execute hands-on tasks for why cnapp matters — covering Cloud-Native Application Protection Platform.
- Execute hands-on tasks for before cnapp — covering CWPP, Separate tools for each domain.
- Execute hands-on tasks for with cnapp — covering Unified risk view across cloud.
- Execute hands-on tasks for cloud security
- Execute hands-on tasks for posture mgmt
- Execute hands-on tasks for the five pillars of cnapp — covering CSPM.
- Execute hands-on tasks for cspm: cloud security posture management — covering Scans cloud configs against baselines, Misconfiguration findings with severity.
| Module 01 | CNAPP Foundations |
| Module 02 | Cloud-Native Application Protection Platforms · Unified Cloud Defense |
| Module 03 | Course Overview and Learning Objectives |
| Module 04 | Map defenses to attacker TTPs |
| Module 05 | Cloud-Native Application Protection Platform |
| Module 06 | Why CNAPP Matters |
| Module 07 | Before CNAPP |
| Module 08 | With CNAPP |
| Module 09 | Cloud Security |
| Module 10 | Posture Mgmt |
| Module 11 | The Five Pillars of CNAPP |
| Module 12 | CSPM: Cloud Security Posture Management |
| Module 13 | What CSPM Does |
| Module 14 | Key CSPM Outputs |
All hands-on labs run on Rocheston Rose X OS. Students practice cnapp foundations by implementing the controls discussed in class, with a focus on real-world deployment, monitoring, and validation.
- Lab 1: Explain CNAPP Foundations fundamentals
- Lab 2: Execute hands-on tasks for cloud-native application protection platforms · unified cloud defense
- Lab 3: Explain Course Overview and Learning Objectives fundamentals
- Lab 4: Execute hands-on tasks for map defenses to attacker ttps
- Lab 5: Execute hands-on tasks for cloud-native application protection platform
Upon successful completion of this course, students will receive an official RCCE Course Completion Certificate for CNAPP Foundations, verifiable through the Rocheston certification portal.
- Full access to all course materials and slide decks
- Hands-on lab access on Rocheston Rose X OS environment
- Access to Rocheston CyberNotes
- Access to Rocheston Zelfire — EDR/XDR SIEM platform
- Access to Rocheston Raven — online cyber range exercise platform
- Access to Rocheston Vulnerability Vines AI