Cyber Threat Intelligence
Develop and present strategic and tactical intelligence reports to support an active breach and gain an advantage on how to hunt and eradicate the threat with targeted research.
Set Yourself Apart
Theory Only Gets Us So Far. Demonstrate Your Ability By Solving Real Challenges Faced By Businesses Today.
Beyond Theory
The CDCP is a practical application of the knowledge, tools, techniques, and procedures acquired through the Cyber Defense Analyst Program. This is accomplished through a battery of real-world security operations scenarios that students must overcome and articulate in a detailed report that includes the appropriate executive summary, findings, recommendations, and remediation steps along with applicable evidence. A holder of the CDCP has demonstrated the knowledge, skill, and practical application to work within a security operations team.
100% Hands-On Proof of Skill Through a Trial by Fire
The CDCP is a practical assessment of the taker's skills and ability. Those attempting the CDCP are challenged to not only solve the problems presented, but they must also provide comprehensive reports, evidence, and remediation steps to resolve them.
Real and Complex Scenarios Seen in the Wild
Modeled after real-scenarios observed across thousands of customer networks and security operations teams. Hunt, Discover, and Defend within the network as it's under attack from a myriad of external and internal threats.
Graded by Cyber Pros with Feedback and Guidance for Every Taker
Each report is reviewed and assessed by instructors of the program who provide feedback designed to ensure takers know where they can improve regardless of the attempt outcome.
Challenges Required for CDCP Award
Network Traffic Analysis
Assess the severity and impact of the suspected malware observed in the network through the application of traffic analysis and forensic recovery of key indicators of compromise.
Malicious Email Analysis
Review MALSPAM and assess the type, scope, and impact of the campaign targeted at the organization. Identify the adversary tools and infrastructure, and devise remediation and preventative controls.
Log Analysis
Hunt through network and endpoint logs to identify what an insider threat did on their way out the door. Build a timeline of events and use your root-cause-analysis skills to remediate and lock them out for good.
Compromised Host
Find the malware lurking within and the means in which it maintains persistence. Gather evidence from running apps, memory, network, and the disk to support the containment and remediation of the discovered malware.
Malware Analysis
Utilize static and dynamic malware analysis techniques to uncover unique indicators, behaviors, and capabilities of the identified sample. Create containment and remediation steps to increase the adversaries' cost of access to your network.
Frequently Asked Questions
-
What do I receive for completing the CDCP?
Beyond the satisfaction of completing a very challenging assessment that sets you apart from your peers, you will receive a digital badge that can be used to verify your award of the CDCP. This digital badge can easily be shared on your professional and personal social media pages.
-
How much time is allowed for the CDCP?
In general, takers are afforded seven full days from the time they start the assessment. This may sound like a long time, but please note that takers report committing on average between 25-40 hours to complete all challenges and reporting requirements. The range of time needed is influenced by a taker's previous exposure to working in tech or their overall time studying and preparing for the assessment prior.
-
How do I prepare for the CDCP?
The Cyber Defense Analyst (CDA) Program is the official course for the CDCP and will prepare you to attempt the assessment. During the CDA Program, your instructors will provide multiple 1-on-1 sessions with you and will further provide feedback on deliverables submitted throughout the course that prepare you for the CDCP certification assessment. Finally, committing yourself to studying and practical mastery of the lab work will ensure you have the theory and hands-on skills to succeed in your assessment attempt.
-
How is the CDCP graded?
The CDCP is a pass/fail assessment. Takers are assessed against a grading rubric that is used to evaluate a taker's skill and ability in solving the six required challenges. Failure to meet one or more challenges will result in a failure to meet or exceed assessment requirements. All takers are provided with a copy of the grading rubric well in advance of the assessment, so they know what is expected of them prior to starting.
-
How many attempts do I get?
As a Cyber Defense Analyst Program student, you receive two attempts included in your course tuition. Subsequent assessments cost $150 to cover lab time, grading, and feedback for the attempt.
-
What is "Gold" status for the CDCP?
Takers who exceed the requirements for CDCP certification and represent the top 5% of takers are awarded the Gold CDCP status. This badge sets the taker apart by showcasing their mastery of the tradecraft required to conduct sophisticated cyber analysis and investigations.