Secrets and tokens Playbook for Teams
RCCE students will learn secrets management including credential vaulting, dynamic secrets, secret rotation, access policies, and secret sprawl prevention. RCCE students will learn to deploy and operate secrets management platforms like HashiCorp Vault, manage database credentials, API keys, certificates, and encryption keys centrally, implement dynamic secrets that are generated on-demand and expire automatically, configure automatic secret rotation, enforce access policies for secret retrieval, detect and remediate secret sprawl across repositories and configuration files, audit secret access, and respond to incidents involving leaked or compromised credentials. This team-oriented course builds collaborative workflows and organizational playbooks for security operations. Starting from foundational concepts, RCCE students will learn to create and implement standardized procedures that enable consistent performance across team members and shifts. Students develop the documentation, communication, and coordination skills needed for effective team-based security operations.
- Security Engineers building defensive controls
- Security Analysts and Blue Team members
- Systems Administrators with security responsibilities
- GRC and Risk Professionals supporting controls
- Professionals implementing Secrets and tokens Playbook for Teams
- Execute hands-on tasks for playbook for teams
- Explain Course Overview fundamentals
- Execute hands-on tasks for what you will learn
- Measure attack surface reduction and program effectiveness — covering Target Audience.
- Execute hands-on tasks for labs: hands-on throughout — covering Target Audience.
- Execute hands-on tasks for what are secrets? — covering Credentials.
- Execute hands-on tasks for infrastructure secrets — covering VPN pre-shared keys.
- Execute hands-on tasks for the secret lifecycle
- Execute hands-on tasks for revocation imperatives — covering Use cryptographically secure random generators.
- Execute hands-on tasks for secret classification framework
- Execute hands-on tasks for rotation frequency
- Execute hands-on tasks for storage tier
| Module 01 | Playbook for Teams |
| Module 02 | Course Overview |
| Module 03 | What You Will Learn |
| Module 04 | Course Metrics |
| Module 05 | Labs: Hands-on throughout |
| Module 06 | What Are Secrets? |
| Module 07 | Infrastructure Secrets |
| Module 08 | The Secret Lifecycle |
| Module 09 | Revocation Imperatives |
| Module 10 | Secret Classification Framework |
| Module 11 | Rotation Frequency |
| Module 12 | Storage Tier |
| Module 13 | Classification Guidelines |
| Module 14 | Credential Vaulting Architecture |
All hands-on labs run on Rocheston Rose X OS. Students practice secrets and tokens playbook for teams by implementing the controls discussed in class, with a focus on real-world deployment, monitoring, and validation.
- Lab 1: Execute hands-on tasks for playbook for teams
- Lab 2: Explain Course Overview fundamentals
- Lab 3: Execute hands-on tasks for what you will learn
- Lab 4: Measure attack surface reduction and program effectiveness
- Lab 5: Execute hands-on tasks for labs: hands-on throughout
Upon successful completion of this course, students will receive an official RCCE Course Completion Certificate for Secrets and tokens Playbook for Teams, verifiable through the Rocheston certification portal.
- Full access to all course materials and slide decks
- Hands-on lab access on Rocheston Rose X OS environment
- Access to Rocheston CyberNotes
- Access to Rocheston Zelfire — EDR/XDR SIEM platform
- Access to Rocheston Raven — online cyber range exercise platform
- Access to Rocheston Vulnerability Vines AI