Hands-On Secrets
RCCE students will learn secrets management including credential vaulting, dynamic secrets, secret rotation, access policies, and secret sprawl prevention. RCCE students will learn to deploy and operate secrets management platforms like HashiCorp Vault, manage database credentials, API keys, certificates, and encryption keys centrally, implement dynamic secrets that are generated on-demand and expire automatically, configure automatic secret rotation, enforce access policies for secret retrieval, detect and remediate secret sprawl across repositories and configuration files, audit secret access, and respond to incidents involving leaked or compromised credentials. This practice-intensive course emphasizes applied skills through lab exercises, real-world scenarios, and production-realistic workflows. Building on core knowledge, RCCE students will learn by doing, building muscle memory and practical confidence through repeated hands-on engagement. Students complete exercises that mirror actual workplace tasks, ensuring skills transfer directly to their professional roles.
- Security Engineers building defensive controls
- Security Analysts and Blue Team members
- Systems Administrators with security responsibilities
- GRC and Risk Professionals supporting controls
- Professionals implementing Hands-On Secrets
- Execute hands-on tasks for hands-on secrets
- Execute hands-on tasks for advanced cyber defense mastery
- Execute hands-on tasks for level: intermediate
- Execute hands-on tasks for duration: 6 hours
- Explain Executive Overview fundamentals
- Execute hands-on tasks for why secrets management matters — covering Credentials are the #1 attack vector in breaches.
- Execute hands-on tasks for strategic importance of secrets management
- Apply zero-trust principles to privilege decisions and elevation
- Execute hands-on tasks for devsecops pipeline
- Measure attack surface reduction and program effectiveness
- Execute hands-on tasks for business impact — covering Regulatory compliance (SOC2, PCI-DSS, HIPAA).
- Execute hands-on tasks for core definitions
| Module 01 | Hands-On Secrets |
| Module 02 | Advanced Cyber Defense Mastery |
| Module 03 | Level: Intermediate |
| Module 04 | Duration: 6 Hours |
| Module 05 | Executive Overview |
| Module 06 | Why Secrets Management Matters |
| Module 07 | Strategic Importance of Secrets Management |
| Module 08 | Zero Trust Enabler |
| Module 09 | DevSecOps Pipeline |
| Module 10 | Risk Reduction |
| Module 11 | Business Impact |
| Module 12 | Core Definitions |
| Module 13 | Credential Vault |
| Module 14 | Dynamic Secrets |
All hands-on labs run on Rocheston Rose X OS. Students practice hands-on secrets by implementing the controls discussed in class, with a focus on real-world deployment, monitoring, and validation.
- Lab 1: Execute hands-on tasks for hands-on secrets
- Lab 2: Execute hands-on tasks for advanced cyber defense mastery
- Lab 3: Execute hands-on tasks for level: intermediate
- Lab 4: Execute hands-on tasks for duration: 6 hours
- Lab 5: Explain Executive Overview fundamentals
Upon successful completion of this course, students will receive an official RCCE Course Completion Certificate for Hands-On Secrets, verifiable through the Rocheston certification portal.
- Full access to all course materials and slide decks
- Hands-on lab access on Rocheston Rose X OS environment
- Access to Rocheston CyberNotes
- Access to Rocheston Zelfire — EDR/XDR SIEM platform
- Access to Rocheston Raven — online cyber range exercise platform
- Access to Rocheston Vulnerability Vines AI