Hands-On Evidence
RCCE students will learn audit evidence collection, management, and presentation including evidence types, collection methodologies, evidence repositories, and evidence lifecycle management. RCCE students will learn to identify the types of evidence required for various compliance frameworks, develop evidence collection procedures that produce consistent and reliable results, configure automated evidence collection from security tools and systems, manage evidence repositories with proper access controls and versioning, validate evidence quality and completeness, present evidence packages to internal and external auditors, and maintain evidence retention schedules that meet regulatory requirements. This practice-intensive course emphasizes applied skills through lab exercises, real-world scenarios, and production-realistic workflows. At an expert level, RCCE students will learn by doing, building muscle memory and practical confidence through repeated hands-on engagement. Students complete exercises that mirror actual workplace tasks, ensuring skills transfer directly to their professional roles.
- Security Engineers building defensive controls
- Security Analysts and Blue Team members
- Systems Administrators with security responsibilities
- GRC and Risk Professionals supporting controls
- Professionals implementing Hands-On Evidence
- Execute hands-on tasks for hands-on evidence
- Execute hands-on tasks for advanced cyber defense mastery
- Explain Executive Overview fundamentals
- Execute hands-on tasks for evidence types
- Execute hands-on tasks for collection methods
- Execute hands-on tasks for strategic importance of evidence management
- Execute hands-on tasks for why evidence matters — covering Regulatory mandates require demonstrable proof.
- Execute hands-on tasks for evidence types & classification
- Execute hands-on tasks for compliance framework evidence mapping
- Execute hands-on tasks for key evidence required
- Execute hands-on tasks for evidence type
- Execute hands-on tasks for technical + documentary
| Module 01 | Hands-On Evidence |
| Module 02 | Advanced Cyber Defense Mastery |
| Module 03 | Executive Overview |
| Module 04 | Evidence Types |
| Module 05 | Collection Methods |
| Module 06 | Strategic Importance of Evidence Management |
| Module 07 | Why Evidence Matters |
| Module 08 | Evidence Types & Classification |
| Module 09 | Compliance Framework Evidence Mapping |
| Module 10 | Key Evidence Required |
| Module 11 | Evidence Type |
| Module 12 | Technical + Documentary |
| Module 13 | Evidence Collection Methodologies |
| Module 14 | Automated Collection |
All hands-on labs run on Rocheston Rose X OS. Students practice hands-on evidence by implementing the controls discussed in class, with a focus on real-world deployment, monitoring, and validation.
- Lab 1: Execute hands-on tasks for hands-on evidence
- Lab 2: Execute hands-on tasks for advanced cyber defense mastery
- Lab 3: Explain Executive Overview fundamentals
- Lab 4: Execute hands-on tasks for evidence types
- Lab 5: Execute hands-on tasks for collection methods
Upon successful completion of this course, students will receive an official RCCE Course Completion Certificate for Hands-On Evidence, verifiable through the Rocheston certification portal.
- Full access to all course materials and slide decks
- Hands-on lab access on Rocheston Rose X OS environment
- Access to Rocheston CyberNotes
- Access to Rocheston Zelfire — EDR/XDR SIEM platform
- Access to Rocheston Raven — online cyber range exercise platform
- Access to Rocheston Vulnerability Vines AI