Security controls Hardening Workshop
RCCE students will learn security control selection, implementation, and validation including preventive, detective, corrective, deterrent, and compensating controls. RCCE students will learn to map security controls to organizational risk and compliance requirements, select appropriate controls from frameworks like NIST 800-53 and CIS Controls, implement technical, administrative, and physical controls, validate control effectiveness through testing and monitoring, document control evidence for audit purposes, identify control gaps and implement compensating controls, and maintain a control catalog that evolves with changing threats and regulatory requirements. This hands-on hardening course focuses on reducing attack surface through practical configuration changes and security guardrails. Building on core knowledge, RCCE students will learn to apply hardening baselines, validate configurations, and measure the security improvement achieved. Students walk away with actionable hardening checklists and the skills to maintain hardened configurations as environments evolve.
- Security Engineers building defensive controls
- Security Analysts and Blue Team members
- Systems Administrators with security responsibilities
- GRC and Risk Professionals supporting controls
- Professionals implementing Security controls Hardening Workshop
- Execute hands-on tasks for security controls hardening workshop
- Execute hands-on tasks for control selection, implementation, validation & hardening baselines
- Execute hands-on tasks for learning objectives
- Execute hands-on tasks for control selection — covering controls to risk and compliance.
- Execute hands-on tasks for navigate nist 800-53 and cis controls
- Execute hands-on tasks for implementation skills — covering Deploy technical, admin, and physical controls.
- Execute hands-on tasks for validation & testing — covering control effectiveness.
- Execute hands-on tasks for documentation & maintenance — covering Document evidence for audit, Maintain control catalogs, Evolve controls with emerging threats.
- Execute hands-on tasks for security controls taxonomy
- Execute hands-on tasks for by function
- Execute hands-on tasks for by implementation — covering Preventive — Block threats before impact, Technical — Firewalls, encryption, ACLs.
- Execute hands-on tasks for compensating — alternative risk mitigation — covering Technical — Firewalls, encryption, ACLs.
| Module 01 | Security Controls Hardening Workshop |
| Module 02 | Control Selection, Implementation, Validation & Hardening Baselines |
| Module 03 | Learning Objectives |
| Module 04 | Control Selection |
| Module 05 | Navigate NIST 800-53 and CIS Controls |
| Module 06 | Implementation Skills |
| Module 07 | Validation & Testing |
| Module 08 | Documentation & Maintenance |
| Module 09 | Security Controls Taxonomy |
| Module 10 | By Function |
| Module 11 | By Implementation |
| Module 12 | Compensating — Alternative risk mitigation |
| Module 13 | Control Functions Deep Dive |
| Module 14 | Preventive Controls |
All hands-on labs run on Rocheston Rose X OS. Students practice security controls hardening workshop by implementing the controls discussed in class, with a focus on real-world deployment, monitoring, and validation.
- Lab 1: Execute hands-on tasks for security controls hardening workshop
- Lab 2: Execute hands-on tasks for control selection, implementation, validation & hardening baselines
- Lab 3: Execute hands-on tasks for learning objectives
- Lab 4: Execute hands-on tasks for control selection
- Lab 5: Execute hands-on tasks for navigate nist 800-53 and cis controls
Upon successful completion of this course, students will receive an official RCCE Course Completion Certificate for Security controls Hardening Workshop, verifiable through the Rocheston certification portal.
- Full access to all course materials and slide decks
- Hands-on lab access on Rocheston Rose X OS environment
- Access to Rocheston CyberNotes
- Access to Rocheston Zelfire — EDR/XDR SIEM platform
- Access to Rocheston Raven — online cyber range exercise platform
- Access to Rocheston Vulnerability Vines AI