Practical Audit readiness Workshop
RCCE students will learn Active Directory security including AD architecture, authentication protocols (Kerberos, NTLM), group policy security, trust relationships, privilege escalation paths, and AD attack detection. RCCE students will learn to assess Active Directory environments for security weaknesses, identify misconfigured permissions, detect Kerberoasting, AS-REP roasting, DCSync, Golden Ticket, and Silver Ticket attacks, implement tiered administration models, configure AD security monitoring with Windows event logs, harden group policy configurations, clean up stale accounts and excessive permissions, and respond to AD compromise with containment and recovery procedures. This practice-intensive course emphasizes applied skills through lab exercises, real-world scenarios, and production-realistic workflows. Starting from foundational concepts, RCCE students will learn by doing, building muscle memory and practical confidence through repeated hands-on engagement. Students complete exercises that mirror actual workplace tasks, ensuring skills transfer directly to their professional roles.
- Security Engineers building defensive controls
- Security Analysts and Blue Team members
- Systems Administrators with security responsibilities
- GRC and Risk Professionals supporting controls
- Professionals implementing Practical Audit readiness Workshop
- Monitor and audit privilege usage; detect escalation attempts
- Execute hands-on tasks for active directory security assessment & hardening
- Execute hands-on tasks for assessment skills
- Execute hands-on tasks for hardening skills — covering Evaluate AD environments for weaknesses, tiered administration models.
- Execute hands-on tasks for learning approach — covering Practice-intensive with lab exercises.
- Execute hands-on tasks for what is active directory?
- Integrate privilege controls with identity providers and SIEM telemetry
- Execute hands-on tasks for authentication hub
- Execute hands-on tasks for policy engine — covering Centralized user and, Kerberos ticket-based auth, Group Policy Objects (GPOs).
- Explain AD Architecture Overview fundamentals
- Execute hands-on tasks for domain controllers
- Execute hands-on tasks for admin accounts
| Module 01 | Practical Audit Readiness Workshop |
| Module 02 | Active Directory Security Assessment & Hardening |
| Module 03 | Assessment Skills |
| Module 04 | Hardening Skills |
| Module 05 | Learning Approach |
| Module 06 | What Is Active Directory? |
| Module 07 | Identity Store |
| Module 08 | Authentication Hub |
| Module 09 | Policy Engine |
| Module 10 | AD Architecture Overview |
| Module 11 | Domain Controllers |
| Module 12 | Admin Accounts |
| Module 13 | Service Accounts |
| Module 14 | Standard Users |
All hands-on labs run on Rocheston Rose X OS. Students practice practical audit readiness workshop by implementing the controls discussed in class, with a focus on real-world deployment, monitoring, and validation.
- Lab 1: Monitor and audit privilege usage; detect escalation attempts
- Lab 2: Execute hands-on tasks for active directory security assessment & hardening
- Lab 3: Execute hands-on tasks for assessment skills
- Lab 4: Execute hands-on tasks for hardening skills
- Lab 5: Execute hands-on tasks for learning approach
Upon successful completion of this course, students will receive an official RCCE Course Completion Certificate for Practical Audit readiness Workshop, verifiable through the Rocheston certification portal.
- Full access to all course materials and slide decks
- Hands-on lab access on Rocheston Rose X OS environment
- Access to Rocheston CyberNotes
- Access to Rocheston Zelfire — EDR/XDR SIEM platform
- Access to Rocheston Raven — online cyber range exercise platform
- Access to Rocheston Vulnerability Vines AI