Trust Boundaries, Data Flows, and Threat Modeling at Scale
RCCE students will learn how to map trust boundaries, data movement, and abuse paths across complex systems so security decisions are driven by realistic attacker workflows and architectural risk. RCCE students will learn to decompose systems, model interactions, identify chokepoints, document assumptions, and convert threat modeling findings into security requirements that engineering teams can implement. The course covers practical scenarios ranging from diagramming and data flow analysis to threat enumeration, control selection, and remediation planning. RCCE students will learn to analyze complex systems and think like an attacker to better defend the organization. This comprehensive course delivers practical knowledge applicable to real-world cybersecurity operations. Starting from foundational concepts, RCCE students will learn through a combination of concept explanation, practical demonstration, and hands-on exercises.
- Security Engineers building defensive controls
- Security Analysts and Blue Team members
- Systems Administrators with security responsibilities
- GRC and Risk Professionals supporting controls
- Professionals implementing Trust Boundaries, Data Flows, and Threat Modeling at Scale
- Design a scalable privilege management architecture with policy and enforcement
- Explain Course Overview and Learning Objectives fundamentals
- Execute hands-on tasks for what you will learn
- Execute hands-on tasks for skills you will build — covering Course Structure.
- Execute hands-on tasks for what are trust boundaries?
- Execute hands-on tasks for common trust zones — covering Lines where privilege levels change, Internet / External untrusted zone.
- Execute hands-on tasks for network boundaries — covering VLANs, subnets, firewalls.
- Execute hands-on tasks for process boundaries — covering Container isolation limits.
- Execute hands-on tasks for privilege boundaries — covering User to admin escalation.
- Execute hands-on tasks for data boundaries — covering Encryption at rest edges.
- Execute hands-on tasks for why decompose? — covering Complex systems hide risk in interactions.
| Module 01 | Threat Modeling at Scale |
| Module 02 | Course Overview and Learning Objectives |
| Module 03 | What You Will Learn |
| Module 04 | Skills You Will Build |
| Module 05 | What Are Trust Boundaries? |
| Module 06 | Common Trust Zones |
| Module 07 | Network Boundaries |
| Module 08 | Process Boundaries |
| Module 09 | Privilege Boundaries |
| Module 10 | Data Boundaries |
| Module 11 | System Decomposition for Threat Modeling |
| Module 12 | Why Decompose? |
| Module 13 | Decomposition Steps |
| Module 14 | Controls Required |
All hands-on labs run on Rocheston Rose X OS. Students practice trust boundaries, data flows, and threat modeling at scale by implementing the controls discussed in class, with a focus on real-world deployment, monitoring, and validation.
- Lab 1: Design a scalable privilege management architecture with policy and enforcement
- Lab 2: Explain Course Overview and Learning Objectives fundamentals
- Lab 3: Execute hands-on tasks for what you will learn
- Lab 4: Execute hands-on tasks for skills you will build
- Lab 5: Execute hands-on tasks for what are trust boundaries?
Upon successful completion of this course, students will receive an official RCCE Course Completion Certificate for Trust Boundaries, Data Flows, and Threat Modeling at Scale, verifiable through the Rocheston certification portal.
- Full access to all course materials and slide decks
- Hands-on lab access on Rocheston Rose X OS environment
- Access to Rocheston CyberNotes
- Access to Rocheston Zelfire — EDR/XDR SIEM platform
- Access to Rocheston Raven — online cyber range exercise platform
- Access to Rocheston Vulnerability Vines AI